Test Report for NSS
Platform: SunOS5.8_DBG.OBJ
Test Run: spd04.1
| Certutil Tests | ||
|---|---|---|
| Test Case | Result | |
| Creating CA Cert DB | Passed | |
| Creating CA Cert TestCA | Passed | |
| Exporting Root Cert | Passed | |
| Creating CA Cert DB | Passed | |
| Creating CA Cert serverCA | Passed | |
| Exporting Root Cert | Passed | |
| Creating CA Cert chain-1-serverCA | Passed | |
| Exporting Root Cert | Passed | |
| Creating CA Cert chain-2-serverCA | Passed | |
| Exporting Root Cert | Passed | |
| Creating CA Cert DB | Passed | |
| Creating CA Cert clientCA | Passed | |
| Exporting Root Cert | Passed | |
| Creating CA Cert chain-1-clientCA | Passed | |
| Exporting Root Cert | Passed | |
| Creating CA Cert chain-2-clientCA | Passed | |
| Exporting Root Cert | Passed | |
| Initializing spd04.mcom.com's Cert DB (ext.) | Passed | |
| Generate Cert Request for spd04.mcom.com (ext) | Passed | |
| Sign spd04.mcom.com's Request (ext) | Passed | |
| Import spd04.mcom.com's Cert -t u,u,u (ext) | Passed | |
| Import Client Root CA -t T,, for spd04.mcom.com (ext.) | Passed | |
| Import serverCA CA -t C,C,C for spd04.mcom.com (ext.) | Passed | |
| Import chain-1-serverCA CA -t u,u,u for spd04.mcom.com (ext.) | Passed | |
| Import chain-2-serverCA CA -t u,u,u for spd04.mcom.com (ext.) | Passed | |
| Initializing ExtendedSSLUser's Cert DB (ext.) | Passed | |
| Generate Cert Request for ExtendedSSLUser (ext) | Passed | |
| Sign ExtendedSSLUser's Request (ext) | Passed | |
| Import ExtendedSSLUser's Cert -t u,u,u (ext) | Passed | |
| Import Server Root CA -t C,C,C for ExtendedSSLUser (ext.) | Passed | |
| Import clientCA CA -t T,C,C for ExtendedSSLUser (ext.) | Passed | |
| Import chain-1-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) | Passed | |
| Import chain-2-clientCA CA -t u,u,u for ExtendedSSLUser (ext.) | Passed | |
| Initializing TestUser's Cert DB | Passed | |
| Import Root CA for TestUser | Passed | |
| Generate Cert Request for TestUser | Passed | |
| Sign TestUser's Request | Passed | |
| Import TestUser's Cert | Passed | |
| Initializing spd04.mcom.com's Cert DB | Passed | |
| Import Root CA for spd04.mcom.com | Passed | |
| Generate Cert Request for spd04.mcom.com | Passed | |
| Sign spd04.mcom.com's Request | Passed | |
| Import spd04.mcom.com's Cert | Passed | |
| Import spd04.mcom.com's Cert | Passed | |
| Initializing Alice's Cert DB | Passed | |
| Import Root CA for Alice | Passed | |
| Generate Cert Request for Alice | Passed | |
| Sign Alice's Request | Passed | |
| Import Alice's Cert | Passed | |
| Initializing Bob's Cert DB | Passed | |
| Import Root CA for Bob | Passed | |
| Generate Cert Request for Bob | Passed | |
| Sign Bob's Request | Passed | |
| Import Bob's Cert | Passed | |
| Initializing Dave's Cert DB | Passed | |
| Import Root CA for Dave | Passed | |
| Generate Cert Request for Dave | Passed | |
| Sign Dave's Request | Passed | |
| Import Dave's Cert | Passed | |
| Initializing Eve's Cert DB | Passed | |
| Import Root CA for Eve | Passed | |
| Generate Cert Request for Eve | Passed | |
| Sign Eve's Request | Passed | |
| Import Eve's Cert | Passed | |
| Import Alices's cert into Bob's db | Passed | |
| Import Bob's cert into Alice's db | Passed | |
| Import Dave's cert into Alice's DB | Passed | |
| Import Dave's cert into Bob's DB | Passed | |
| Import Eve's cert into Alice's DB | Passed | |
| Import Eve's cert into Bob's DB | Passed | |
| Initializing FIPS PUB 140-1 Test Certificate's Cert DB | Passed | |
| Enable FIPS mode on database for FIPS PUB 140-1 Test Certificate | Passed | |
| Generate Certificate for FIPS PUB 140-1 Test Certificate | Passed | |
| SSL Cipher Coverage | ||
|---|---|---|
| Test Case | Result | |
| SSL2 RC4 128 WITH MD5 | Passed | |
| SSL2 RC4 128 EXPORT40 WITH MD5 | Passed | |
| SSL2 RC2 128 CBC WITH MD5 | Passed | |
| SSL2 RC2 128 CBC EXPORT40 WITH MD5 | Passed | |
| SSL2 DES 64 CBC WITH MD5 | Passed | |
| SSL2 DES 192 EDE3 CBC WITH MD5 | Passed | |
| SSL3 RSA WITH RC4 128 MD5 | Passed | |
| SSL3 RSA WITH 3DES EDE CBC SHA | Passed | |
| SSL3 RSA WITH DES CBC SHA | Passed | |
| SSL3 RSA EXPORT WITH RC4 40 MD5 | Passed | |
| SSL3 RSA EXPORT WITH RC2 CBC 40 MD5 | Passed | |
| SSL3 RSA WITH NULL MD5 | Passed | |
| SSL3 RSA FIPS WITH 3DES EDE CBC SHA | Passed | |
| SSL3 RSA FIPS WITH DES CBC SHA | Passed | |
| SSL3 RSA EXPORT WITH DES CBC SHA (new) | Passed | |
| SSL3 RSA EXPORT WITH RC4 56 SHA (new) | Passed | |
| SSL3 RSA WITH RC4 128 SHA | Passed | |
| SSL3 RSA WITH AES 128 CBC SHA | Passed | |
| SSL3 RSA WITH AES 256 CBC SHA | Passed | |
| SSL3 RSA WITH NULL SHA | Passed | |
| TLS RSA WITH RC4 128 MD5 | Passed | |
| TLS RSA WITH 3DES EDE CBC SHA | Passed | |
| TLS RSA WITH DES CBC SHA | Passed | |
| TLS RSA EXPORT WITH RC4 40 MD5 | Passed | |
| TLS RSA EXPORT WITH RC2 CBC 40 MD5 | Passed | |
| TLS RSA WITH NULL MD5 | Passed | |
| TLS RSA FIPS WITH 3DES EDE CBC SHA | Passed | |
| TLS RSA FIPS WITH DES CBC SHA | Passed | |
| TLS RSA EXPORT WITH DES CBC SHA (new) | Passed | |
| TLS RSA EXPORT WITH RC4 56 SHA (new) | Passed | |
| TLS RSA WITH RC4 128 SHA | Passed | |
| TLS RSA WITH AES 128 CBC SHA | Passed | |
| TLS RSA WITH AES 256 CBC SHA | Passed | |
| TLS RSA WITH NULL SHA | Passed | |
| SSL Client Authentication | ||
|---|---|---|
| Test Case | Result | |
| TLS Request don't require client auth (client does not provide auth) | Passed | |
| TLS Request don't require client auth (bad password) | Passed | |
| TLS Request don't require client auth (client auth) | Passed | |
| TLS Require client auth (client does not provide auth) | Passed | |
| TLS Require client auth (bad password) | Passed | |
| TLS Require client auth (client auth) | Passed | |
| SSL3 Request don't require client auth (client does not provide auth) | Passed | |
| SSL3 Request don't require client auth (bad password) | Passed | |
| SSL3 Request don't require client auth (client auth) | Passed | |
| SSL3 Require client auth (client does not provide auth) | Passed | |
| SSL3 Require client auth (bad password) | Passed | |
| SSL3 Require client auth (client auth) | Passed | |
| TLS Request don't require client auth on 2nd hs (client does not provide auth) | Passed | |
| TLS Request don't require client auth on 2nd hs (bad password) | Passed | |
| TLS Request don't require client auth on 2nd hs (client auth) | Passed | |
| TLS Require client auth on 2nd hs (client does not provide auth) | Passed | |
| TLS Require client auth on 2nd hs (bad password) | Passed | |
| TLS Require client auth on 2nd hs (client auth) | Passed | |
| SSL3 Request don't require client auth on 2nd hs (client does not provide auth) | Passed | |
| SSL3 Request don't require client auth on 2nd hs (bad password) | Passed | |
| SSL3 Request don't require client auth on 2nd hs (client auth) | Passed | |
| SSL3 Require client auth on 2nd hs (client does not provide auth) | Passed | |
| SSL3 Require client auth on 2nd hs (bad password) | Passed | |
| SSL3 Require client auth on 2nd hs (client auth) | Passed | |
| SSL Stress Test | ||
|---|---|---|
| Test Case | Result | |
| Stress SSL2 RC4 128 with MD5 | Passed | |
| Stress SSL3 RC4 128 with MD5 | Passed | |
| Stress TLS RC4 128 with MD5 | Passed | |
| SSL Cipher Coverage Extended test | ||
|---|---|---|
| Test Case | Result | |
| SSL3 RSA WITH RC4 128 MD5 | Passed | |
| SSL3 RSA WITH 3DES EDE CBC SHA | Passed | |
| SSL3 RSA WITH DES CBC SHA | Passed | |
| SSL3 RSA EXPORT WITH RC4 40 MD5 | Passed | |
| SSL3 RSA EXPORT WITH RC2 CBC 40 MD5 | Passed | |
| SSL3 RSA WITH NULL MD5 | Passed | |
| SSL3 RSA FIPS WITH 3DES EDE CBC SHA | Passed | |
| SSL3 RSA FIPS WITH DES CBC SHA | Passed | |
| SSL3 RSA EXPORT WITH DES CBC SHA (new) | Passed | |
| SSL3 RSA EXPORT WITH RC4 56 SHA (new) | Passed | |
| SSL3 RSA WITH RC4 128 SHA | Passed | |
| SSL3 RSA WITH AES 128 CBC SHA | Passed | |
| SSL3 RSA WITH AES 256 CBC SHA | Passed | |
| SSL3 RSA WITH NULL SHA | Passed | |
| TLS RSA WITH RC4 128 MD5 | Passed | |
| TLS RSA WITH 3DES EDE CBC SHA | Passed | |
| TLS RSA WITH DES CBC SHA | Passed | |
| TLS RSA EXPORT WITH RC4 40 MD5 | Passed | |
| TLS RSA EXPORT WITH RC2 CBC 40 MD5 | Passed | |
| TLS RSA WITH NULL MD5 | Passed | |
| TLS RSA FIPS WITH 3DES EDE CBC SHA | Passed | |
| TLS RSA FIPS WITH DES CBC SHA | Passed | |
| TLS RSA EXPORT WITH DES CBC SHA (new) | Passed | |
| TLS RSA EXPORT WITH RC4 56 SHA (new) | Passed | |
| TLS RSA WITH RC4 128 SHA | Passed | |
| TLS RSA WITH AES 128 CBC SHA | Passed | |
| TLS RSA WITH AES 256 CBC SHA | Passed | |
| TLS RSA WITH NULL SHA | Passed | |
| SSL Client Authentication Extended test | ||
|---|---|---|
| Test Case | Result | |
| TLS Request don't require client auth (client does not provide auth) | Passed | |
| TLS Request don't require client auth (bad password) | Passed | |
| TLS Request don't require client auth (client auth) | Passed | |
| TLS Require client auth (client does not provide auth) | Passed | |
| TLS Require client auth (bad password) | Passed | |
| TLS Require client auth (client auth) | Passed | |
| SSL3 Request don't require client auth (client does not provide auth) | Passed | |
| SSL3 Request don't require client auth (bad password) | Passed | |
| SSL3 Request don't require client auth (client auth) | Passed | |
| SSL3 Require client auth (client does not provide auth) | Passed | |
| SSL3 Require client auth (bad password) | Passed | |
| SSL3 Require client auth (client auth) | Passed | |
| TLS Request don't require client auth on 2nd hs (client does not provide auth) | Passed | |
| TLS Request don't require client auth on 2nd hs (bad password) | Passed | |
| TLS Request don't require client auth on 2nd hs (client auth) | Passed | |
| TLS Require client auth on 2nd hs (client does not provide auth) | Passed | |
| TLS Require client auth on 2nd hs (bad password) | Passed | |
| TLS Require client auth on 2nd hs (client auth) | Passed | |
| SSL3 Request don't require client auth on 2nd hs (client does not provide auth) | Passed | |
| SSL3 Request don't require client auth on 2nd hs (bad password) | Passed | |
| SSL3 Request don't require client auth on 2nd hs (client auth) | Passed | |
| SSL3 Require client auth on 2nd hs (client does not provide auth) | Passed | |
| SSL3 Require client auth on 2nd hs (bad password) | Passed | |
| SSL3 Require client auth on 2nd hs (client auth) | Passed | |
| SSL Stress Test Extended test | ||
|---|---|---|
| Test Case | Result | |
| Stress SSL3 RC4 128 with MD5 | Passed | |
| Stress TLS RC4 128 with MD5 | Passed | |
| SDR Tests | ||
|---|---|---|
| Test Case | Result | |
| Creating SDR Key | Passed | |
| Encrypt - Value 2 | Passed | |
| Decrypt - Value 1 | Passed | |
| Decrypt - Value 2 | Passed | |
| Cipher Tests | ||
|---|---|---|
| Test Case | Result | |
| DES ECB Encrypt | Passed | |
| DES ECB Decrypt | Passed | |
| DES CBC Encrypt | Passed | |
| DES CBC Decrypt | Passed | |
| DES3 ECB Encrypt | Passed | |
| DES3 ECB Decrypt | Passed | |
| DES3 CBC Encrypt | Passed | |
| DES3 CBC Decrypt | Passed | |
| AES ECB Encrypt | Passed | |
| AES ECB Decrypt | Passed | |
| AES CBC Encrypt | Passed | |
| AES CBC Decrypt | Passed | |
| RC2 ECB Encrypt | Passed | |
| RC2 ECB Decrypt | Passed | |
| RC2 CBC Encrypt | Passed | |
| RC2 CBC Decrypt | Passed | |
| RC4 Encrypt | Passed | |
| RC4 Decrypt | Passed | |
| RSA Encrypt | Passed | |
| RSA Decrypt | Passed | |
| DSA Sign | Passed | |
| DSA Verify | Passed | |
| MD2 Hash | Passed | |
| MD5 Hash | Passed | |
| SHA1 Hash | Passed | |
| SHA256 Hash | Passed | |
| SHA384 Hash | Passed | |
| SHA512 Hash | Passed | |
| S/MIME Tests | ||
|---|---|---|
| Test Case | Result | |
| Create Signature Alice (SHA1) | Passed | |
| Decode Alice's Signature (SHA1) | Passed | |
| Compare Decoded Signature and Original (SHA1) | Passed | |
| Create Signature Alice (SHA256) | Passed | |
| Decode Alice's Signature (SHA256) | Passed | |
| Compare Decoded Signature and Original (SHA256) | Passed | |
| Create Signature Alice (SHA384) | Passed | |
| Decode Alice's Signature (SHA384) | Passed | |
| Compare Decoded Signature and Original (SHA384) | Passed | |
| Create Signature Alice (SHA512) | Passed | |
| Decode Alice's Signature (SHA512) | Passed | |
| Compare Decoded Signature and Original (SHA512) | Passed | |
| Create Enveloped Data Alice | Passed | |
| Decode Enveloped Data Alice | Passed | |
| Compare Decoded Enveloped Data and Original | Passed | |
| Create Multiple Recipients Enveloped Data Alice | Passed | |
| Encrypt to a Multiple Email cert | Passed | |
| Decode Multiple Recipients Enveloped Data Alice by Bob | Passed | |
| Decode Multiple Recipients Enveloped Data Alice by Dave | Passed | |
| Decrypt with a Multiple Email cert | Passed | |
| Compare Decoded Mult. Recipients Enveloped Data Alice/Bob | Passed | |
| Compare Decoded Mult. Recipients Enveloped Data Alice/Dave | Passed | |
| Compare Decoded with Multiple Email cert | Passed | |
| Create Certs-Only Alice | Passed | |
| Verify Certs-Only by CA | Passed | |
| Create Encrypted-Data | Passed | |
| Decode Encrypted-Data | Passed | |
| Compare Decoded and Original Data | Passed | |
| Tools Tests | ||
|---|---|---|
| Test Case | Result | |
| Exporting Alice's email cert & key (pk12util -o) | Passed | |
| Importing Alice's email cert & key (pk12util -i) | Passed | |
| Create objsign cert (signtool -G) | Passed | |
| Signing a set of files (signtool -Z) | Passed | |
| Listing signed files in jar (signtool -v) | Passed | |
| Show who signed jar (signtool -w) | Passed | |
| FIPS 140-1 Compliance Tests | ||
|---|---|---|
| Test Case | Result | |
| Verify this module is in FIPS mode (modutil -chkfips true) | Passed | |
| List the FIPS module certificates (certutil -L) | Passed | |
| List the FIPS module keys (certutil -K) | Passed | |
| Attempt to list FIPS module keys with incorrect password (certutil -K) | Passed | |
| Validate the certificate (certutil -V -e) | Passed | |
| Export the certificate and key as a PKCS#12 file (pk12util -o) | Passed | |
| Export the certificate as a DER (certutil -L -r) | Passed | |
| List the FIPS module certificates (certutil -L) | Passed | |
| Delete the certificate and key from the FIPS module (certutil -D) | Passed | |
| List the FIPS module certificates (certutil -L) | Passed | |
| List the FIPS module keys (certutil -K) | Passed | |
| Import the certificate and key from the PKCS#12 file (pk12util -i) | Passed | |
| List the FIPS module certificates (certutil -L) | Passed | |
| List the FIPS module keys (certutil -K) | Passed | |
| CERT and Key DB Tests | ||
|---|---|---|
| Test Case | Result | |
| Certutil failed in a nonexisting dir 255 | Passed | |
| Dbtest readonly failed in a nonexisting dir 46 | Passed | |
| Dbtest force succeeded in a nonexisting dir 0 | Passed | |
| Tstclnt failed in an empty dir 1 | Passed | |
| Dbtest readonly failed in an empty dir 46 | Passed | |
| Certutil failed in an empty dir 255 | Passed | |
| Dbtest force readonly succeeded in an empty dir 0 | Passed | |
| Dbtest r/w failed in an readonly dir 46 | Passed | |
| Certutil failed in an readonly dir 255 | Passed | |
| Dbtest readonly succeeded in a readonly dir 0 | Passed | |
| Dbtest force succeeded in a readonly dir 0 | Passed | |