Forum: >>> Magnum BBS <<<

Bug#1102965: pkcs11-provider: FTBFS in testing: tests failures (8/12)

From Lucas Nussbaum@21:1/5 to All on Sun Apr 13 14:50:04 2025

[continued from previous message]

MIGDAgEBAgIDBAQCEwIEIIYTL5RjEta/cXNPmzh89NeH60YkgTj9IukeRSuif4KV BDCa0x4WfZEgcNSkSebaAR6svdPe+3lXOuM1x65DUtJhC9vy2pBbNSZt2M/M6VAe xeOhBgIEZ/o7OqIEAgIcIKQGBAQBAAAArgYCBAn44YCzBAICEew=
-----END SSL SESSION PARAMETERS-----
Shared ciphers:TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-CHACHA20-

POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:DHE-RSA-AES256-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA256:ECDHE-ECDSA-
AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES128-SHA:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA

Signature Algorithms: id-ml-dsa-65:id-ml-dsa-87:id-ml-dsa-44:ECDSA+SHA256:ECDSA+SHA384:ECDSA+SHA512:ed25519:ed448:ecdsa_brainpoolP256r1_sha256:ecdsa_brainpoolP384r1_sha384:ecdsa_brainpoolP512r1_sha512:rsa_pss_pss_sha256:rsa_pss_pss_sha384:rsa_pss_pss_

sha512:RSA-PSS+SHA256:RSA-PSS+SHA384:RSA-PSS+SHA512:RSA+SHA256:RSA+SHA384:RSA+SHA512:ECDSA+SHA224:RSA+SHA224:DSA+SHA224:DSA+SHA256:DSA+SHA384:DSA+SHA512

TLS SUCCESSFUL
Q
Shared Signature Algorithms: id-ml-dsa-65:id-ml-dsa-87:id-ml-dsa-44:ECDSA+SHA256:ECDSA+SHA384:ECDSA+SHA512:ed25519:ed448:ecdsa_brainpoolP256r1_sha256:ecdsa_brainpoolP384r1_sha384:ecdsa_brainpoolP512r1_sha512:rsa_pss_pss_sha256:rsa_pss_pss_sha384:rsa_

pss_pss_sha512:RSA-PSS+SHA256:RSA-PSS+SHA384:RSA-PSS+SHA512:RSA+SHA256:RSA+SHA384:RSA+SHA512:ECDSA+SHA224:RSA+SHA224

Supported groups: X25519MLKEM768:x25519:secp256r1:x448:secp384r1:secp521r1:ffdhe2048:ffdhe3072
Shared groups: X25519MLKEM768:x25519:secp256r1:x448:secp384r1:secp521r1:ffdhe2048:ffdhe3072
CIPHER is TLS_AES_256_GCM_SHA384
This TLS version forbids renegotiation.
DONE
shutdown accept socket
shutting down SSL
CONNECTION CLOSED
0 items in the session cache
0 client connects (SSL_connect())
0 client renegotiates (SSL_connect())
0 client connects that finished
1 server accepts (SSL_accept())
0 server renegotiates (SSL_accept())
1 server accepts that finished
0 session cache hits
0 session cache misses
0 session cache timeouts
0 callback cache hits
0 cache full overflows (128 allowed)

## Run sanity test with default values (Ed448)
spawn openssl s_client -connect localhost:23456 -CAfile /build/reproducible-path/pkcs11-provider-1.0/obj-x86_64-linux-gnu/tests/softhsm/caCert.pem
Connecting to ::1
CONNECTED(00000005)
Can't use SSL_get_servername
depth=1 CN=Issuer
verify return:1
depth=0 O=PKCS11 Provider, CN=My ED448 Cert
verify return:1
---
Certificate chain
0 s:O=PKCS11 Provider, CN=My ED448 Cert
i:CN=Issuer
a:PKEY: ED448, 456 (bit); sigalg: sha256WithRSAEncryption
v:NotBefore: Apr 12 10:06:36 2025 GMT; NotAfter: Apr 12 10:06:36 2026 GMT ---
Server certificate
-----BEGIN CERTIFICATE----- MIICXzCCAUegAwIBAgIBBzANBgkqhkiG9w0BAQsFADARMQ8wDQYDVQQDEwZJc3N1 ZXIwHhcNMjUwNDEyMTAwNjM2WhcNMjYwNDEyMTAwNjM2WjAyMRgwFgYDVQQKEw9Q S0NTMTEgUHJvdmlkZXIxFjAUBgNVBAMTDU15IEVENDQ4IENlcnQwQzAFBgMrZXED OgAGMGLLVppTF80lCtXH168PTdsgjk5as47xNnTRVINtl7dzGgZJwyTJlvPAHaoX 7U7Txk1uIFyirQCjgYEwfzAMBgNVHRMBAf8EAjAAMB8GA1UdEQQYMBaBFHRlc3Rj ZXJ0QGV4YW1wbGUub3JnMA4GA1UdDwEB/wQEAwIHgDAdBgNVHQ4EFgQUOreDDh2y xNg+7pjMgqfn3al5S1gwHwYDVR0jBBgwFoAULKDyJgrt56MAGczIHb+Da+94qA8w DQYJKoZIhvcNAQELBQADggEBAFo8PoYa45uBZ18CE0G+DyoGUzoOytU4GA0tDaJh RGJ0AV/2a2LKRshg+M6NN9EV8dOhCEFm2pn00G1fU9er6Wvj9/cfgXCKlgqG5yHD /1nn/Qyi8wUH3WhtpkmNq6NIzLgTrxdBoy8VUCCiEWfk4atjfzeLB8VdzH8S6TE7 jxPzrAAMxsk6B/U1tXv05RflS8fYIALU+ZVdVzc3jvgW41HGGWcYp2o+N+TeEC58 H7ArQZeW2coK+3GEpHSxHZJlsEZSZE7oAPpUJqlLO8mU25oSf0fKOCO/5k7cFZ+d YJHvZn0ojSFvaXWVLcewoah9kiaCr0NNU1RcCbnf3wZ6EyE=
-----END CERTIFICATE-----
subject=O=PKCS11 Provider, CN=My ED448 Cert
issuer=CN=Issuer
---
No client certificate CA names sent
Peer signature type: ed448
Negotiated TLS1.3 group: X25519MLKEM768
---
SSL handshake has read 2113 bytes and written 1613 bytes
Verification: OK
---
New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384
Protocol: TLSv1.3
Server public key is 456 bit
This TLS version forbids renegotiation.
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)
---
---
Post-Handshake New Session Ticket arrived:
SSL-Session:
Protocol : TLSv1.3
Cipher : TLS_AES_256_GCM_SHA384
Session-ID: 5BAFC2BA86E1C950E8AE9707102792808AE4663D485B0303051506D181AFC690
Session-ID-ctx:
Resumption PSK: 60EC194CACF3C1A0DAFFE98E8FFB770EA26E86F98B34F065CFAED1A9F83E14D47D8DB71EEAA1D4B68BD1CDB44A200D78
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 7200 (seconds)
TLS session ticket:
0000 - 45 4d 7f 07 d8 01 3e c2-37 ad 15 c5 84 9f 87 a4 EM....>.7.......
0010 - 68 a2 ce 95 52 f2 e8 18-0a 48 7e 3e 58 ba ef da h...R....H~>X...
0020 - d8 b1 16 28 f1 42 af 26-9c 8b d3 a6 b4 56 c5 91 ...(.B.&.....V..
0030 - 3d db f6 db 63 20 b1 ac-b1 60 ca b1 19 44 2c ee =...c ...`...D,.
0040 - 0f 6a 32 c3 8b f3 c6 9f-96 62 5b 81 5b 35 0d c2 .j2......b[.[5..
0050 - 07 08 84 36 eb f5 da 30-7d 5f 42 b0 7f 38 34 e8 ...6...0}_B..84.
0060 - 08 b6 8d bd 14 99 c3 dc-87 8f 23 8f 77 6b 85 bc ..........#.wk..
0070 - 04 e4 b9 72 5d 36 89 4d-75 73 36 41 a3 25 4e ed ...r]6.Mus6A.%N.
0080 - cb 21 fc a8 ad 13 1b 14-0c 89 e7 b9 e9 97 80 85 .!..............
0090 - 49 d6 fb 31 02 a5 09 90-fb 9a fe 3d 16 af 4d 57 I..1.......=..MW
00a0 - fb 1a 64 8e 23 23 1c a9-2d 31 f6 6b cf ca 68 5e ..d.##..-1.k..h^
00b0 - 6b 60 5e 91 a0 d1 b7 14-c7 26 7d 8f af cf 20 cb k`^......&}... .
00c0 - fe b3 c5 06 d1 ef bf 10-3f 10 a9 86 b3 2b 76 87 ........?....+v.

Start Time: 1744452410
Timeout : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: no
Max Early Data: 0
---
read R BLOCK
---
Post-Handshake New Session Ticket arrived:
SSL-Session:
Protocol : TLSv1.3
Cipher : TLS_AES_256_GCM_SHA384
Session-ID: 75673CC6E7A5B141FDA2B366FBBBA0CF6BFA265EDD43D255D88BF2DF16353CA7
Session-ID-ctx:
Resumption PSK: 8A9D164B6E982E875E831EFC6AFF5D9C93FA731EEF6DC77E06A4F55C9173FF55962C17013CE3C76B2B9BFBA8AA7FBC2B
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 7200 (seconds)
TLS session ticket:
0000 - 45 4d 7f 07 d8 01 3e c2-37 ad 15 c5 84 9f 87 a4 EM....>.7.......
0010 - bb ad ee bd d8 a4 36 eb-7e 8c 25 b5 1f 0e 68 80 ......6.~.%...h.
0020 - f0 3f 70 67 da 47 6a bc-6d 61 7d a9 94 c2 1b e5 .?pg.Gj.ma}.....
0030 - 84 a7 eb 5d c0 04 3f 9a-53 cf 45 75 29 22 b6 a6 ...]..?.S.Eu)"..
0040 - 2e 63 3b b2 ac 09 db 9d-e3 0d 87 fb 94 e1 4a 00 .c;...........J.
0050 - 9e f4 76 cc ae 62 40 e4-b3 fd d5 1b 4d c4 ae 4a [email protected]
0060 - 97 38 cc 77 ef 13 78 9f-8b e7 40 7e b8 62 51 66 .8.w..x...@~.bQf
0070 - 08 f6 fd 74 a4 37 55 ce-7d 54 52 d6 70 74 1a ea ...t.7U.}TR.pt..
0080 - 4d 49 c2 52 96 3e fe 32-d3 2b 35 b2 e3 6e 66 58 MI.R.>.2.+5..nfX
0090 - ed ae f2 ce 0c cf 18 ef-e5 e7 3b 8f 46 4b a3 3c ..........;.FK.<
00a0 - 09 98 28 c6 07 93 03 8e-ef fc c1 37 33 b9 2d 6f ..(........73.-o
00b0 - 33 25 d6 88 46 79 21 61-3f bf d3 9c da c5 5d ac 3%..Fy!a?.....].
00c0 - 4d c0 b9 2a eb 5a f2 72-ab 83 d1 0a 65 17 fb f0 M..*.Z.r....e...

Start Time: 1744452410
Timeout : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: no
Max Early Data: 0
---
read R BLOCK
TLS SUCCESSFUL
40B7C6AA187F0000:error:0A000126:SSL routines::unexpected eof while reading:../ssl/record/rec_layer_s3.c:691:
Server output:
spawn openssl s_server -accept 23456 -naccept 1 -key pkcs11:type=private;id=%00%09 -cert pkcs11:type=cert;object=ed2Cert
Using default temp DH parameters
ACCEPT
-----BEGIN SSL SESSION PARAMETERS----- MIGEAgEBAgIDBAQCEwIEIPjoQXRMYWXIS/9+GlQ/ZI5xu5xJkiqZ9TqeGE0atW5x BDCKnRZLbpguh16DHvxq/12ck/pzHu9tx34GpPVckXP/VZYsFwE848drK5v7qKp/ vCuhBgIEZ/o7OqIEAgIcIKQGBAQBAAAArgcCBQDZsqpGswQCAhHs
-----END SSL SESSION PARAMETERS-----
Shared ciphers:TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-CHACHA20-

POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:DHE-RSA-AES256-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA256:ECDHE-ECDSA-
AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES128-SHA:DHE-RSA-AES128-SHA:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA

Signature Algorithms: id-ml-dsa-65:id-ml-dsa-87:id-ml-dsa-44:ECDSA+SHA256:ECDSA+SHA384:ECDSA+SHA512:ed25519:ed448:ecdsa_brainpoolP256r1_sha256:ecdsa_brainpoolP384r1_sha384:ecdsa_brainpoolP512r1_sha512:rsa_pss_pss_sha256:rsa_pss_pss_sha384:rsa_pss_pss_

sha512:RSA-PSS+SHA256:RSA-PSS+SHA384:RSA-PSS+SHA512:RSA+SHA256:RSA+SHA384:RSA+SHA512:ECDSA+SHA224:RSA+SHA224:DSA+SHA224:DSA+SHA256:DSA+SHA384:DSA+SHA512

Shared Signature Algorithms: id-ml-dsa-65:id-ml-dsa-87:id-ml-dsa-44:ECDSA+SHA256:ECDSA+SHA384:ECDSA+SHA512:ed25519:ed448:ecdsa_brainpoolP256r1_sha256:ecdsa_brainpoolP384r1_sha384:ecdsa_brainpoolP512r1_sha512:rsa_pss_pss_sha256:rsa_pss_pss_sha384:rsa_

pss_pss_sha512:RSA-PSS+SHA256:RSA-PSS+SHA384:RSA-PSS+SHA512:RSA+SHA256:RSA+SHA384:RSA+SHA512:ECDSA+SHA224:RSA+SHA224

Supported groups: X25519MLKEM768:x25519:secp256r1:x448:secp384r1:secp521r1:ffdhe2048:ffdhe3072
Shared groups: X25519MLKEM768:x25519:secp256r1:x448:secp384r1:secp521r1:ffdhe2048:ffdhe3072
CIPHER is TLS_AES_256_GCM_SHA384
This TLS version forbids renegotiation.
TLS SUCCESSFUL
Q
DONE
shutdown accept socket
shutting down SSL
CONNECTION CLOSED
0 items in the session cache
0 client connects (SSL_connect())
0 client renegotiates (SSL_connect())
0 client connects that finished
1 server accepts (SSL_accept())
0 server renegotiates (SSL_accept())
1 server accepts that finished
0 session cache hits
0 session cache misses
0 session cache timeouts
0 callback cache hits
0 cache full overflows (128 allowed)

## Run test with TLS 1.2
spawn openssl s_client -connect localhost:23456 -CAfile /build/reproducible-path/pkcs11-provider-1.0/obj-x86_64-linux-gnu/tests/softhsm/caCert.pem -tls1_2
Connecting to ::1
CONNECTED(00000005)
Can't use SSL_get_servername
depth=1 CN=Issuer
verify return:1
depth=0 O=PKCS11 Provider, CN=My Test Cert
verify return:1
---
Certificate chain
0 s:O=PKCS11 Provider, CN=My Test Cert
i:CN=Issuer
a:PKEY: RSA, 2048 (bit); sigalg: sha256WithRSAEncryption
v:NotBefore: Apr 12 10:06:36 2025 GMT; NotAfter: Apr 12 10:06:36 2026 GMT ---
Server certificate
-----BEGIN CERTIFICATE----- MIIDPzCCAiegAwIBAgIBAzANBgkqhkiG9w0BAQsFADARMQ8wDQYDVQQDEwZJc3N1 ZXIwHhcNMjUwNDEyMTAwNjM2WhcNMjYwNDEyMTAwNjM2WjAxMRgwFgYDVQQKEw9Q S0NTMTEgUHJvdmlkZXIxFTATBgNVBAMTDE15IFRlc3QgQ2VydDCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAMcui28zjpBTCQCCyxI2Su9brj5yxKb/ccI3 u9ipO7YCde7wVVPpjCZzXIzUmqpQ3tke+2YyBHjqcIeBJnvB+xKt6Oq6sHQ6IKL4 5dt3Vhj8Lvc/nyOFWOjJmeQLJGJvYn+ohqWIQ4Bk/3H9RDsLuam22mJ3LlHPZWcZ 2JAGyOvpZ94mrVcFXbwezCkK8kEoBCR/IZmCT7gWOFrWFEJ21JuWkyr7WZ0xaaNR 9O8EdMZBIZJ4scADmIiDn/rZ7UGQ98fC6RcCJUfZr9SG0JrGzv2ovGECF+Gd1ohT k2QV9xZ/HtV30iVD5slTfapS07ia281Q0f82YNQpgQrgvCuF+vECAwEAAaOBgTB/ MAwGA1UdEwEB/wQCMAAwHwYDVR0RBBgwFoEUdGVzdGNlcnRAZXhhbXBsZS5vcmcw DgYDVR0PAQH/BAQDAgWgMB0GA1UdDgQWBBT0OHyt6wRKSITgknAIlOweeCNYGzAf BgNVHSMEGDAWgBQsoPImCu3nowAZzMgdv4Nr73ioDzANBgkqhkiG9w0BAQsFAAOC AQEAFzMqwcTSQ5mo130cP1oP16oECeUzEDkLJipwEg3aj+3XzagczgGjdgoNqkdH 9swEEivllD3Icrm1/cdqxWeAo8ys0PdFTMfZOqu0eHdIZmW7pV8gGXsIj+V4BWoT CKOsjfJ/rFU1emy8e+ct79VyUI2BxRJPoTKdM9qaYn5c9joC6znKi1tXN5OUho5A ae+VMWvq3crGQEDN2slPPyo56YDl1rhGFY4/pZPy0X7O2EWJzzpSJbq4M0kiXdqA YS+n/1WOx57LgfCl4VDfeZpr8VngfTC+UqCBhKCEASfshkxl9wZ0XlNEn3DxA2c/ rX/Xw3YYk1eMaw1wZ1FuP3hKXw==
-----END CERTIFICATE-----
subject=O=PKCS11 Provider, CN=My Test Cert
issuer=CN=Issuer
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: rsa_pss_rsae_sha256
Peer Temp Key: X25519, 253 bits
---
SSL handshake has read 1476 bytes and written 284 bytes
Verification: OK
---
New, TLSv1.2, Cipher is ECDHE-RSA-AES256-GCM-SHA384
Protocol: TLSv1.2
Server public key is 2048 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1.2
Cipher : ECDHE-RSA-AES256-GCM-SHA384
Session-ID: EA64052EB6FF64B2AA6E25946684D807755CBDADFB9250B2586EE92E0B9BEA1B
Session-ID-ctx:
Master-Key: 8ECDDC4E76DF10F81051B6F7C8C5562D427F1DA7F7358D2A5F378F4D69BF62C400B1E6274392A9C316998228E994E1D6
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 7200 (seconds)
TLS session ticket:
0000 - d2 f6 f5 d5 55 5c 85 fd-d9 33 c3 91 12 31 df c9 ....U\...3...1..
0010 - 54 3e 48 cf 41 54 2a 21-d2 a8 1b 13 2c 17 35 e0 T>H.AT*!....,.5.
0020 - f5 88 1b 40 2c 15 43 ef-d8 f5 1d c2 84 b4 9f 90 ...@,.C.........
0030 - 98 b6 de a9 b5 fc 2e 29-13 ce e8 ef 78 ca 60 2e .......)....x.`.
0040 - 4b e6 a7 1e ac 76 2e 78-dd 4d 6f 12 e5 66 1b e2 K....v.x.Mo..f..
0050 - 12 f0 1d fc 34 ec b8 e1-29 f1 cf 3c 27 c9 34 38 ....4...)..<'.48
0060 - a5 46 0d e6 a8 ca a0 d2-81 9b 4c 46 fe e6 a7 de .F........LF....
0070 - 28 8a 8f 29 9a 55 d7 85-9a 33 16 f4 f4 3a c3 c5 (..).U...3...:..
0080 - bd e2 23 69 55 76 ae 20-00 24 96 ba 28 ec 9d f7 ..#iUv. .$..(...
0090 - 4f 35 ce 35 33 e6 05 e3-2e d3 1d 19 5f 6f d1 00 O5.53......._o..
00a0 - 64 50 34 32 0a 5a a1 9e-65 57 d4 69 5c c3 7e 5a dP42.Z..eW.i\.~Z

Start Time: 1744452410
Timeout : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: yes
---
TLS SUCCESSFUL
400709C29F7F0000:error:0A000126:SSL routines::unexpected eof while reading:../ssl/record/rec_layer_s3.c:691:
Server output:
spawn openssl s_server -accept 23456 -naccept 1 -key pkcs11:type=private;id=%00%01 -cert pkcs11:type=cert;object=testCert
Using default temp DH parameters
ACCEPT
-----BEGIN SSL SESSION PARAMETERS----- MF8CAQECAgMDBALAMAQABDCOzdxOdt8Q+BBRtvfIxVYtQn8dp/c1jSpfN49Nab9i xACx5idDkqnDFpmCKOmU4dahBgIEZ/o7OqIEAgIcIKQGBAQBAAAArQMCAQGzAwIB
HQ==
-----END SSL SESSION PARAMETERS-----
Shared ciphers:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:DHE-RSA-

AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:DHE-RSA-AES256-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-
RSA-AES128-SHA:DHE-RSA-AES128-SHA:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA

Signature Algorithms: ECDSA+SHA256:ECDSA+SHA384:ECDSA+SHA512:ed25519:ed448:rsa_pss_pss_sha256:rsa_pss_pss_sha384:rsa_pss_pss_sha512:RSA-PSS+SHA256:RSA-PSS+SHA384:RSA-PSS+SHA512:RSA+SHA256:RSA+SHA384:RSA+SHA512:ECDSA+SHA224:RSA+SHA224:DSA+SHA224:DSA+

SHA256:DSA+SHA384:DSA+SHA512

Shared Signature Algorithms: ECDSA+SHA256:ECDSA+SHA384:ECDSA+SHA512:ed25519:ed448:rsa_pss_pss_sha256:rsa_pss_pss_sha384:rsa_pss_pss_sha512:RSA-PSS+SHA256:RSA-PSS+SHA384:RSA-PSS+SHA512:RSA+SHA256:RSA+SHA384:RSA+SHA512:ECDSA+SHA224:RSA+SHA224:DSA+SHA224:

DSA+SHA256:DSA+SHA384:DSA+SHA512

Supported Elliptic Curve Point Formats: uncompressed:ansiX962_compressed_prime:ansiX962_compressed_char2
Supported groups: x25519:secp256r1:x448:secp384r1:secp521r1
Shared groups: x25519:secp256r1:x448:secp384r1:secp521r1
CIPHER is ECDHE-RSA-AES256-GCM-SHA384
Secure Renegotiation IS supported
TLS SUCCESSFUL
Q
DONE
shutdown accept socket
shutting down SSL
CONNECTION CLOSED
0 items in the session cache
0 client connects (SSL_connect())
0 client renegotiates (SSL_connect())
0 client connects that finished
1 server accepts (SSL_accept())
0 server renegotiates (SSL_accept())
1 server accepts that finished
0 session cache hits
0 session cache misses
0 session cache timeouts
0 callback cache hits
0 cache full overflows (128 allowed)

## Run test with explicit TLS 1.3
spawn openssl s_client -connect localhost:23456 -CAfile /build/reproducible-path/pkcs11-provider-1.0/obj-x86_64-linux-gnu/tests/softhsm/caCert.pem -tls1_3
Connecting to ::1
CONNECTED(00000005)
Can't use SSL_get_servername
depth=1 CN=Issuer
verify return:1
depth=0 O=PKCS11 Provider, CN=My Test Cert
verify return:1
---
Certificate chain
0 s:O=PKCS11 Provider, CN=My Test Cert
i:CN=Issuer
a:PKEY: RSA, 2048 (bit); sigalg: sha256WithRSAEncryption
v:NotBefore: Apr 12 10:06:36 2025 GMT; NotAfter: Apr 12 10:06:36 2026 GMT ---
Server certificate
-----BEGIN CERTIFICATE----- MIIDPzCCAiegAwIBAgIBAzANBgkqhkiG9w0BAQsFADARMQ8wDQYDVQQDEwZJc3N1 ZXIwHhcNMjUwNDEyMTAwNjM2WhcNMjYwNDEyMTAwNjM2WjAxMRgwFgYDVQQKEw9Q S0NTMTEgUHJvdmlkZXIxFTATBgNVBAMTDE15IFRlc3QgQ2VydDCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAMcui28zjpBTCQCCyxI2Su9brj5yxKb/ccI3 u9ipO7YCde7wVVPpjCZzXIzUmqpQ3tke+2YyBHjqcIeBJnvB+xKt6Oq6sHQ6IKL4 5dt3Vhj8Lvc/nyOFWOjJmeQLJGJvYn+ohqWIQ4Bk/3H9RDsLuam22mJ3LlHPZWcZ 2JAGyOvpZ94mrVcFXbwezCkK8kEoBCR/IZmCT7gWOFrWFEJ21JuWkyr7WZ0xaaNR 9O8EdMZBIZJ4scADmIiDn/rZ7UGQ98fC6RcCJUfZr9SG0JrGzv2ovGECF+Gd1ohT k2QV9xZ/HtV30iVD5slTfapS07ia281Q0f82YNQpgQrgvCuF+vECAwEAAaOBgTB/ MAwGA1UdEwEB/wQCMAAwHwYDVR0RBBgwFoEUdGVzdGNlcnRAZXhhbXBsZS5vcmcw DgYDVR0PAQH/BAQDAgWgMB0GA1UdDgQWBBT0OHyt6wRKSITgknAIlOweeCNYGzAf BgNVHSMEGDAWgBQsoPImCu3nowAZzMgdv4Nr73ioDzANBgkqhkiG9w0BAQsFAAOC AQEAFzMqwcTSQ5mo130cP1oP16oECeUzEDkLJipwEg3aj+3XzagczgGjdgoNqkdH 9swEEivllD3Icrm1/cdqxWeAo8ys0PdFTMfZOqu0eHdIZmW7pV8gGXsIj+V4BWoT CKOsjfJ/rFU1emy8e+ct79VyUI2BxRJPoTKdM9qaYn5c9joC6znKi1tXN5OUho5A ae+VMWvq3crGQEDN2slPPyo56YDl1rhGFY4/pZPy0X7O2EWJzzpSJbq4M0kiXdqA YS+n/1WOx57LgfCl4VDfeZpr8VngfTC+UqCBhKCEASfshkxl9wZ0XlNEn3DxA2c/ rX/Xw3YYk1eMaw1wZ1FuP3hKXw==
-----END CERTIFICATE-----
subject=O=PKCS11 Provider, CN=My Test Cert
issuer=CN=Issuer
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: rsa_pss_rsae_sha256
Negotiated TLS1.3 group: X25519MLKEM768
---
SSL handshake has read 2479 bytes and written 1540 bytes
Verification: OK
---
New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384
Protocol: TLSv1.3
Server public key is 2048 bit
This TLS version forbids renegotiation.
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)
---
---
Post-Handshake New Session Ticket arrived:
SSL-Session:
Protocol : TLSv1.3
Cipher : TLS_AES_256_GCM_SHA384
Session-ID: F324BAA855E42204228912D1A7D7FBA2E79C977D55CC94485DE187D54AE15931
Session-ID-ctx:
Resumption PSK: 963C664A24AFACFD293FE90A5DC2C60185D776CD97E61E26B46062E6901E35623CE282461E8C987539E84A8AFA5883F2
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 7200 (seconds)
TLS session ticket:
0000 - ad db e9 af 7f 9b 7c 84-ed 83 87 12 4e 68 17 b2 ......|.....Nh..
0010 - d3 53 4d c1 fa 09 4f 30-7a e2 24 50 d4 6d 43 38 .SM...O0z.$P.mC8
0020 - 21 27 7c 9b d5 a4 41 62-ca e6 ed 12 50 14 ba bf !'|...Ab....P...
0030 - 60 dd bd b9 93 4c 85 5e-be b5 2c 52 d0 e8 33 0e `....L.^..,R..3.
0040 - f9 3e f2 34 b5 85 12 8a-f3 5f 71 15 76 db 93 f8 .>.4....._q.v...
0050 - 66 29 7c 9d b4 d7 74 06-6c 64 ea ec 28 fd 51 bc f)|...t.ld..(.Q.
0060 - c4 b7 20 76 76 84 fa 36-fe 23 9b 7e db 76 0e b7 .. vv..6.#.~.v..
0070 - 54 0f d4 9c a8 27 5d 87-7a 94 20 d3 54 75 21 00 T....'].z. .Tu!.
0080 - 6d 61 7f c8 8a d0 f7 69-ca 0d eb 6e b3 20 63 93 ma.....i...n. c.
0090 - 85 cc 71 c6 11 34 cc ce-bf d2 6d 46 52 3b 73 a8 ..q..4....mFR;s.
00a0 - 41 f1 d3 99 77 57 2f 8a-5e 77 27 60 5c ce e1 1b A...wW/.^w'`\...
00b0 - 9e 0a 3f 86 0f 11 93 45-34 da d1 e5 ce 0f ee 53 ..?....E4......S
00c0 - b0 62 38 1f 84 72 69 7a-c0 fc ed 53 6e b9 9a b6 .b8..riz...Sn...

Start Time: 1744452410
Timeout : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: no
Max Early Data: 0
---
read R BLOCK
---
Post-Handshake New Session Ticket arrived:
SSL-Session:
Protocol : TLSv1.3
Cipher : TLS_AES_256_GCM_SHA384
Session-ID: 47A17695F96451A3D302D7D88D9D253FA2FB76656BBA8376CF465169B78425E0
Session-ID-ctx:
Resumption PSK: 8CE7A8CBA60094EB2E1A6EAD71F5DF908ACE900DA4D61DFA07A17F06F14752786DF89966316A1D122D09AA46F5681BB4
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 7200 (seconds)
TLS session ticket:
0000 - ad db e9 af 7f 9b 7c 84-ed 83 87 12 4e 68 17 b2 ......|.....Nh..
0010 - 18 31 d7 68 08 81 90 f7-80 28 c5 bf 08 be ca 75 .1.h.....(.....u
0020 - db 92 ca c2 95 42 e8 9e-03 5e 9c f3 36 03 3d c2 .....B...^..6.=.
0030 - 6f 2e 6c 9d 2a 38 fc e7-b9 73 bb 98 1b 72 5c 1e o.l.*8...s...r\.
0040 - c3 76 2c 99 e6 15 24 14-dd 66 d3 c8 2e 3c 50 79 .v,...$..f...<Py
0050 - 3f ea ba 27 c4 ea 1c f9-97 7e ab c1 3e 39 9e 7a ?..'.....~..>9.z
0060 - 61 7c e0 26 22 c6 f4 50-91 f2 86 ec 6b 37 d9 52 a|.&"..P....k7.R
0070 - 62 63 1e 0e db 0d db 51-51 09 f2 46 df 76 fd 84 bc.....QQ..F.v..
0080 - 6d 1a 1e 30 d0 8c c0 93-df 00 41 0f c9 1b 1a 7e m..0......A....~
0090 - 61 66 81 f1 f3 db 78 3b-e4 fd 07 c4 27 8c 8d 8c af....x;....'...
00a0 - 79 88 dc b9 cd 31 4d 56-17 46 54 2b 31 01 79 36 y....1MV.FT+1.y6
00b0 - 37 95 72 66 88 f1 71 62-9c b4 ee 23 14 24 c4 bb 7.rf..qb...#.$..
00c0 - 25 a9 62 6e e1 1b d1 7f-c3 69 bc 17 d8 65 39 04 %.bn.....i...e9.

Start Time: 1744452410
Timeout : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: no
Max Early Data: 0
---
read R BLOCK
TLS SUCCESSFUL
40174B63417F0000:error:0A000126:SSL routines::unexpected eof while reading:../ssl/record/rec_layer_s3.c:691:
Server output:
spawn openssl s_server -accept 23456 -naccept 1 -key pkcs11:type=private;id=%00%01 -cert pkcs11:type=cert;object=testCert
Using default temp DH parameters
ACCEPT
-----BEGIN SSL SESSION PARAMETERS----- MIGDAgEBAgIDBAQCEwIEIE9I72V+22Wg+lhq6wBbRWD1dqpicwJgGAqvHeQ4U1gZ BDCM56jLpgCU6y4abq1x9d+Qis6QDaTWHfoHoX8G8UdSeG34mWYxah0SLQmqRvVo G7ShBgIEZ/o7OqIEAgIcIKQGBAQBAAAArgYCBDVrrsuzBAICEew=
-----END SSL SESSION PARAMETERS-----
Shared ciphers:TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256
Signature Algorithms: id-ml-dsa-65:id-ml-dsa-87:id-ml-dsa-44:ECDSA+SHA256:ECDSA+SHA384:ECDSA+SHA512:ed25519:ed448:ecdsa_brainpoolP256r1_sha256:ecdsa_brainpoolP384r1_sha384:ecdsa_brainpoolP512r1_sha512:rsa_pss_pss_sha256:rsa_pss_pss_sha384:rsa_pss_pss_

sha512:RSA-PSS+SHA256:RSA-PSS+SHA384:RSA-PSS+SHA512:RSA+SHA256:RSA+SHA384:RSA+SHA512

Shared Signature Algorithms: id-ml-dsa-65:id-ml-dsa-87:id-ml-dsa-44:ECDSA+SHA256:ECDSA+SHA384:ECDSA+SHA512:ed25519:ed448:ecdsa_brainpoolP256r1_sha256:ecdsa_brainpoolP384r1_sha384:ecdsa_brainpoolP512r1_sha512:rsa_pss_pss_sha256:rsa_pss_pss_sha384:rsa_

pss_pss_sha512:RSA-PSS+SHA256:RSA-PSS+SHA384:RSA-PSS+SHA512:RSA+SHA256:RSA+SHA384:RSA+SHA512

Supported groups: X25519MLKEM768:x25519:secp256r1:x448:secp384r1:secp521r1:ffdhe2048:ffdhe3072
Shared groups: X25519MLKEM768:x25519:secp256r1:x448:secp384r1:secp521r1:ffdhe2048:ffdhe3072
CIPHER is TLS_AES_256_GCM_SHA384
This TLS version forbids renegotiation.
TLS SUCCESSFUL
Q
DONE
shutdown accept socket
shutting down SSL
CONNECTION CLOSED
0 items in the session cache
0 client connects (SSL_connect())
0 client renegotiates (SSL_connect())
0 client connects that finished
1 server accepts (SSL_accept())
0 server renegotiates (SSL_accept())
1 server accepts that finished
0 session cache hits
0 session cache misses
0 session cache timeouts
0 callback cache hits
0 cache full overflows (128 allowed)

## Run test with TLS 1.2 (ECDSA)
spawn openssl s_client -connect localhost:23456 -CAfile /build/reproducible-path/pkcs11-provider-1.0/obj-x86_64-linux-gnu/tests/softhsm/caCert.pem -tls1_2
Connecting to ::1
CONNECTED(00000005)
Can't use SSL_get_servername
depth=1 CN=Issuer
verify return:1
depth=0 O=PKCS11 Provider, CN=My EC Cert
verify return:1
---
Certificate chain
0 s:O=PKCS11 Provider, CN=My EC Cert
i:CN=Issuer
a:PKEY: EC, (prime256v1); sigalg: sha256WithRSAEncryption
v:NotBefore: Apr 12 10:06:36 2025 GMT; NotAfter: Apr 12 10:06:36 2026 GMT ---
Server certificate
-----BEGIN CERTIFICATE----- MIICcjCCAVqgAwIBAgIBBDANBgkqhkiG9w0BAQsFADARMQ8wDQYDVQQDEwZJc3N1 ZXIwHhcNMjUwNDEyMTAwNjM2WhcNMjYwNDEyMTAwNjM2WjAvMRgwFgYDVQQKEw9Q S0NTMTEgUHJvdmlkZXIxEzARBgNVBAMTCk15IEVDIENlcnQwWTATBgcqhkjOPQIB BggqhkjOPQMBBwNCAATBhC6Bskae48wDIXJQXRNVcx3n7y90X+kO5StIXCuMPHy1 KKX00cXF6UXUHszjlvS2SMrVZQvJc2WTOiDTiv27o4GBMH8wDAYDVR0TAQH/BAIw ADAfBgNVHREEGDAWgRR0ZXN0Y2VydEBleGFtcGxlLm9yZzAOBgNVHQ8BAf8EBAMC B4AwHQYDVR0OBBYEFL+L0nMF/mpdNL6bGu74hnxx2622MB8GA1UdIwQYMBaAFCyg 8iYK7eejABnMyB2/g2vveKgPMA0GCSqGSIb3DQEBCwUAA4IBAQA50M5wbeBoxn/E X6VGW6QqIvM6rSi+/1e4bPpF3QAWDQDe1dktyIuV+S845UEW0+evWQzNIvPuahXJ gqOHJyTVYJNK2UZHd1P0GMCbnNwAFPuJtbikTG0XXj5mCmDDGfjMDe7f4iB7yoho eXijLDEYcSu9EBSHTKMFl1KHYI59fKsFaG1/vblPeRiXYwGpynuWnS9hiRpM5Bng FVSuHPZaD/CsVje/tqIzp7dx+EVwAmCEbWSLuzM8SvOf7LPU8NJOfUHTKPnq9ul7 UbgGKwA4ITGLF6tuviJ+AXVkF6k/mlEGBU2AeEVrYxsJfIpZ9iUGLRw0DYHX9pXy
B4KikiF9
-----END CERTIFICATE-----
subject=O=PKCS11 Provider, CN=My EC Cert
issuer=CN=Issuer
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: ecdsa_secp256r1_sha256
Peer Temp Key: X25519, 253 bits
---
SSL handshake has read 1085 bytes and written 284 bytes
Verification: OK
---
New, TLSv1.2, Cipher is ECDHE-ECDSA-AES256-GCM-SHA384
Protocol: TLSv1.2
Server public key is 256 bit
Secure Renegotiation IS supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
SSL-Session:
Protocol : TLSv1.2
Cipher : ECDHE-ECDSA-AES256-GCM-SHA384
Session-ID: 28D3D7BD4F1845C7E832ABD0339B50567F1EAEDFB97C41B2A43F0641C219B7B5
Session-ID-ctx:
Master-Key: B555226C60BA058ACB1810D3BE965430B208E432D1F99467D17F00A6A0887D2665BA8003F76E20D8D21A22F98669FE94
PSK identity: None
PSK identity hint: None
SRP username: None
TLS session ticket lifetime hint: 7200 (seconds)
TLS session ticket:
0000 - eb 3f 14 bf 58 8e 58 1c-0b 9d 55 d3 0f 3f 2d 52 .?..X.X...U..?-R
0010 - 16 d3 58 65 ab 11 4d f4-82 2b 6e c2 f6 cf fe c6 ..Xe..M..+n.....
0020 - da 27 20 d3 56 81 8d 46-24 51 fe c8 a5 af 4f dc .' .V..F$Q....O.
0030 - c7 1d 0d fa 8f 88 47 eb-b9 3c ac 81 75 b7 75 de ......G..<..u.u.
0040 - 07 c3 6f e2 d4 6c 38 00-8a 9b b1 bc f7 4b 5a cb ..o..l8......KZ.
0050 - 49 6b f2 86 b0 20 20 3f-48 54 9b 44 c8 7d db c3 Ik... ?HT.D.}..
0060 - a5 d5 27 0d b9 c1 c4 59-17 65 85 43 11 d8 ae eb ..'....Y.e.C....
0070 - 33 2c 12 54 10 86 bf 4c-94 15 ff 9e a1 c3 65 23 3,.T...L......e#
0080 - 64 93 ae ad 4f 51 9d 5a-76 f5 91 79 b9 02 fc d4 d...OQ.Zv..y....
0090 - 28 02 68 21 fa 04 18 35-ce 9a 01 9e 1d 5c 9e b3 (.h!...5.....\..
00a0 - 52 43 f6 47 0c 09 2c 2e-3b e0 51 43 db ab ab 0f RC.G..,.;.QC....

Start Time: 1744452410
Timeout : 7200 (sec)
Verify return code: 0 (ok)
Extended master secret: yes
---
TLS SUCCESSFUL
40270F58007F0000:error:0A000126:SSL routines::unexpected eof while reading:../ssl/record/rec_layer_s3.c:691:
Server output:
spawn openssl s_server -accept 23456 -naccept 1 -key pkcs11:type=private;id=%00%02 -cert pkcs11:type=cert;object=ecCert -tls1_2
Using default temp DH parameters
ACCEPT
-----BEGIN SSL SESSION PARAMETERS----- MF8CAQECAgMDBALALAQABDC1VSJsYLoFissYENO+llQwsgjkMtH5lGfRfwCmoIh9 JmW6gAP3biDY0hoi+YZp/pShBgIEZ/o7OqIEAgIcIKQGBAQBAAAArQMCAQGzAwIB
HQ==
-----END SSL SESSION PARAMETERS-----
Shared ciphers:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:DHE-RSA-

AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:DHE-RSA-AES256-SHA256:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES256-SHA:ECDHE-ECDSA-AES128-SHA:ECDHE-
RSA-AES128-SHA:DHE-RSA-AES128-SHA:AES256-GCM-SHA384:AES128-GCM-SHA256:AES256-SHA256:AES128-SHA256:AES256-SHA:AES128-SHA

Signature Algorithms: ECDSA+SHA256:ECDSA+SHA384:ECDSA+SHA512:ed25519:ed448:rsa_pss_pss_sha256:rsa_pss_pss_sha384:rsa_pss_pss_sha512:RSA-PSS+SHA256:RSA-PSS+SHA384:RSA-PSS+SHA512:RSA+SHA256:RSA+SHA384:RSA+SHA512:ECDSA+SHA224:RSA+SHA224:DSA+SHA224:DSA+

SHA256:DSA+SHA384:DSA+SHA512

Shared Signature Algorithms: ECDSA+SHA256:ECDSA+SHA384:ECDSA+SHA512:ed25519:ed448:rsa_pss_pss_sha256:rsa_pss_pss_sha384:rsa_pss_pss_sha512:RSA-PSS+SHA256:RSA-PSS+SHA384:RSA-PSS+SHA512:RSA+SHA256:RSA+SHA384:RSA+SHA512:ECDSA+SHA224:RSA+SHA224:DSA+SHA224:

DSA+SHA256:DSA+SHA384:DSA+SHA512

Supported Elliptic Curve Point Formats: uncompressed:ansiX962_compressed_prime:ansiX962_compressed_char2
Supported groups: x25519:secp256r1:x448:secp384r1:secp521r1
Shared groups: x25519:secp256r1:x448:secp384r1:secp521r1
CIPHER is ECDHE-ECDSA-AES256-GCM-SHA384
TLS SUCCESSFUL
Q
Secure Renegotiation IS supported
DONE
shutdown accept socket
shutting down SSL
CONNECTION CLOSED
0 items in the session cache
0 client connects (SSL_connect())
0 client renegotiates (SSL_connect())
0 client connects that finished
1 server accepts (SSL_accept())
0 server renegotiates (SSL_accept())
1 server accepts that finished
0 session cache hits
0 session cache misses
0 session cache timeouts
0 callback cache hits
0 cache full overflows (128 allowed)

## Run test with TLS 1.2 and ECDH
spawn openssl s_client -connect localhost:23456 -CAfile /build/reproducible-path/pkcs11-provider-1.0/obj-x86_64-linux-gnu/tests/softhsm/caCert.pem -tls1_2 -cipher ECDHE-ECDSA-AES128-GCM-SHA256 -groups secp256r1
Connecting to ::1
CONNECTED(00000005)
Can't use SSL_get_servername
depth=1 CN=Issuer
verify return:1
depth=0 O=PKCS11 Provider, CN=My EC Cert
verify return:1
---
Certificate chain
0 s:O=PKCS11 Provider, CN=My EC Cert
i:CN=Issuer
a:PKEY: EC, (prime256v1); sigalg: sha256WithRSAEncryption

[continued in next message]

--- SoupGate-Win32 v1.05
* Origin: fsxNet Usenet Gateway (21:1/5)

Who's Online
Recent Visitors
- Bob Worm
  Mon Jun 8 16:33:22 2026
  from Wales, Uk via Telnet
- Bob Worm
  Mon Jun 8 14:11:46 2026
  from Wales, Uk via Telnet
- Krenn
  Mon Jun 8 11:22:02 2026
  from Sydney, Nsw via Telnet
- Bob Worm
  Mon Jun 8 08:26:26 2026
  from Wales, Uk via Telnet
- Spearb0y
  Mon Jun 8 06:51:02 2026
  from Massachusetts via SSH
- Krenn
  Mon Jun 8 05:45:38 2026
  from Sydney, Nsw via Telnet
- Bob Worm
  Sun Jun 7 20:58:28 2026
  from Wales, Uk via Telnet
- Michal Wronka
  Sun Jun 7 19:26:28 2026
  from Wroclaw, Poland via SSH

System Info

Sysop:	Keyop
Location:	Huddersfield, West Yorkshire, UK
Users:	715
Nodes:	16 (2 / 14)
Uptime:	27:11:52
Calls:	12,106
Calls today:	6
Files:	15,006
Messages:	6,518,203

Bug#1102965: pkcs11-provider: FTBFS in testing: tests failures (8/12)

Who's Online

Recent Visitors

System Info