[17:10:24.279](0.048s) # setting up data directory
# Checking port 56663
# Found port 56663
Name: primary
Data directory: /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata
Backup directory: /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/backup
Archive directory: /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/archives
Connection string: port=56663 host=/var/folders/n8/pp_chp6x3jlfy1n94r6hdjv40000gn/T/F1dJDgfBIc
Log file: /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log
[17:10:24.311](0.032s) # initializing database system by copying initdb template
# Running: cp -RPp /Users/admin/pgsql/build/tmp_install/initdb-template /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata
# Running: /Users/admin/pgsql/build/src/test/regress/pg_regress --config-auth /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata
### Starting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log -o --cluster-name=primary start
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 44120
[17:10:24.926](0.615s) ok 1 - ssl_library parameter
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down..... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 44672
[17:10:28.028](3.102s) # testing password-protected keys
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... stopped waiting
pg_ctl: could not start server
Examine the log output.
# pg_ctl restart failed; see logfile for details: /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log
# No postmaster PID for node "primary"
[17:10:28.241](0.212s) ok 2 - restart fails with password-protected key file with wrong password
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
pg_ctl: PID file "/Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata/postmaster.pid" does not exist
Is server running?
trying to start server anyway
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 44727
[17:10:28.358](0.117s) ok 3 - restart succeeds with password-protected key file
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... stopped waiting
pg_ctl: could not start server
Examine the log output.
# pg_ctl restart failed; see logfile for details: /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log
# No postmaster PID for node "primary"
[17:10:28.578](0.220s) ok 4 - restart fails with incorrect SSL protocol bounds
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
pg_ctl: PID file "/Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata/postmaster.pid" does not exist
Is server running?
trying to start server anyway
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 44802
[17:10:28.697](0.119s) ok 5 - restart succeeds with correct SSL protocol bounds
[17:10:28.698](0.000s) # running client tests
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 44836
[17:10:28.964](0.266s) ok 6 - server doesn't accept non-SSL connections
[17:10:28.964](0.000s) ok 7 - server doesn't accept non-SSL connections: matches
[17:10:29.003](0.039s) ok 8 - connect without server root cert sslmode=require
[17:10:29.003](0.000s) ok 9 - connect without server root cert sslmode=require: no stderr
[17:10:29.028](0.025s) ok 10 - connect without server root cert sslmode=verify-ca
[17:10:29.028](0.000s) ok 11 - connect without server root cert sslmode=verify-ca: matches
[17:10:29.058](0.029s) ok 12 - connect without server root cert sslmode=verify-full
[17:10:29.058](0.000s) ok 13 - connect without server root cert sslmode=verify-full: matches
[17:10:29.080](0.022s) ok 14 - connect with wrong server root cert sslmode=require
[17:10:29.080](0.000s) ok 15 - connect with wrong server root cert sslmode=require: matches
[17:10:29.107](0.027s) ok 16 - connect with wrong server root cert sslmode=verify-ca
[17:10:29.107](0.000s) ok 17 - connect with wrong server root cert sslmode=verify-ca: matches
[17:10:29.161](0.054s) ok 18 - connect with wrong server root cert sslmode=verify-full
[17:10:29.161](0.000s) ok 19 - connect with wrong server root cert sslmode=verify-full: matches
[17:10:29.203](0.042s) ok 20 - connect with server CA cert, without root CA
[17:10:29.203](0.000s) ok 21 - connect with server CA cert, without root CA: matches
[17:10:29.322](0.118s) ok 22 - connect with correct server CA cert file sslmode=require
[17:10:29.322](0.000s) ok 23 - connect with correct server CA cert file sslmode=require: no stderr
[17:10:29.382](0.060s) ok 24 - connect with correct server CA cert file sslmode=verify-ca
[17:10:29.382](0.000s) ok 25 - connect with correct server CA cert file sslmode=verify-ca: no stderr
[17:10:29.403](0.021s) ok 26 - connect with correct server CA cert file sslmode=verify-full
[17:10:29.403](0.000s) ok 27 - connect with correct server CA cert file sslmode=verify-full: no stderr
[17:10:29.429](0.026s) ok 28 - cert root file that contains two certificates, order 1
[17:10:29.430](0.000s) ok 29 - cert root file that contains two certificates, order 1: no stderr
[17:10:29.451](0.022s) ok 30 - cert root file that contains two certificates, order 2
[17:10:29.451](0.000s) ok 31 - cert root file that contains two certificates, order 2: no stderr
[17:10:29.472](0.021s) ok 32 - connect with sslcertmode=disable
[17:10:29.472](0.000s) ok 33 - connect with sslcertmode=disable: no stderr
[17:10:29.493](0.020s) ok 34 - connect with sslcertmode=allow
[17:10:29.493](0.000s) ok 35 - connect with sslcertmode=allow: no stderr
[17:10:29.546](0.054s) ok 36 - connect with sslcertmode=require fails without a client certificate
[17:10:29.547](0.000s) ok 37 - connect with sslcertmode=require fails without a client certificate: matches
[17:10:29.598](0.051s) ok 38 - sslcrl option with invalid file name
[17:10:29.598](0.000s) ok 39 - sslcrl option with invalid file name: no stderr
[17:10:29.620](0.022s) ok 40 - CRL belonging to a different CA
[17:10:29.620](0.000s) ok 41 - CRL belonging to a different CA: matches
[17:10:29.638](0.018s) ok 42 - directory CRL belonging to a different CA
[17:10:29.638](0.000s) ok 43 - directory CRL belonging to a different CA: matches
[17:10:29.658](0.020s) ok 44 - CRL with a non-revoked cert
[17:10:29.658](0.000s) ok 45 - CRL with a non-revoked cert: no stderr
[17:10:29.678](0.020s) ok 46 - directory CRL with a non-revoked cert
[17:10:29.678](0.000s) ok 47 - directory CRL with a non-revoked cert: no stderr
[17:10:29.699](0.021s) ok 48 - mismatch between host name and server certificate sslmode=require
[17:10:29.699](0.000s) ok 49 - mismatch between host name and server certificate sslmode=require: no stderr
[17:10:29.721](0.022s) ok 50 - mismatch between host name and server certificate sslmode=verify-ca
[17:10:29.721](0.000s) ok 51 - mismatch between host name and server certificate sslmode=verify-ca: no stderr
[17:10:29.744](0.023s) ok 52 - mismatch between host name and server certificate sslmode=verify-full
[17:10:29.744](0.000s) ok 53 - mismatch between host name and server certificate sslmode=verify-full: matches
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 44938
[17:10:30.030](0.287s) ok 54 - IP address in the Common Name
[17:10:30.030](0.000s) ok 55 - IP address in the Common Name: no stderr
[17:10:30.064](0.033s) ok 56 - mismatch between host name and server certificate IP address
[17:10:30.064](0.000s) ok 57 - mismatch between host name and server certificate IP address: matches
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 44952
[17:10:30.314](0.250s) ok 58 - IP address in a dNSName
[17:10:30.314](0.000s) ok 59 - IP address in a dNSName: no stderr
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 44963
[17:10:30.576](0.262s) ok 60 - host name matching with X.509 Subject Alternative Names 1
[17:10:30.576](0.000s) ok 61 - host name matching with X.509 Subject Alternative Names 1: no stderr
[17:10:30.607](0.030s) ok 62 - host name matching with X.509 Subject Alternative Names 2
[17:10:30.607](0.000s) ok 63 - host name matching with X.509 Subject Alternative Names 2: no stderr
[17:10:30.667](0.060s) ok 64 - host name matching with X.509 Subject Alternative Names wildcard
[17:10:30.667](0.000s) ok 65 - host name matching with X.509 Subject Alternative Names wildcard: no stderr
[17:10:30.691](0.024s) ok 66 - host name not matching with X.509 Subject Alternative Names
[17:10:30.691](0.000s) ok 67 - host name not matching with X.509 Subject Alternative Names: matches
[17:10:30.710](0.019s) ok 68 - host name not matching with X.509 Subject Alternative Names wildcard
[17:10:30.710](0.000s) ok 69 - host name not matching with X.509 Subject Alternative Names wildcard: matches
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 44987
[17:10:30.996](0.286s) ok 70 - host name matching with a single X.509 Subject Alternative Name
[17:10:30.996](0.000s) ok 71 - host name matching with a single X.509 Subject Alternative Name: no stderr
[17:10:31.037](0.041s) ok 72 - host name not matching with a single X.509 Subject Alternative Name
[17:10:31.038](0.001s) ok 73 - host name not matching with a single X.509 Subject Alternative Name: matches
[17:10:31.072](0.034s) ok 74 - host name not matching with a single X.509 Subject Alternative Name wildcard
[17:10:31.072](0.000s) ok 75 - host name not matching with a single X.509 Subject Alternative Name wildcard: matches
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45010
[17:10:31.316](0.244s) ok 76 - host matching an IPv4 address (Subject Alternative Name 1)
[17:10:31.317](0.000s) ok 77 - host matching an IPv4 address (Subject Alternative Name 1): no stderr
[17:10:31.352](0.036s) ok 78 - host matching an IPv4 address in alternate form (Subject Alternative Name 1)
[17:10:31.352](0.000s) ok 79 - host matching an IPv4 address in alternate form (Subject Alternative Name 1): no stderr
[17:10:31.382](0.029s) ok 80 - host not matching an IPv4 address (Subject Alternative Name 1)
[17:10:31.382](0.000s) ok 81 - host not matching an IPv4 address (Subject Alternative Name 1): matches
[17:10:31.412](0.030s) ok 82 - host matching an IPv6 address (Subject Alternative Name 2)
[17:10:31.413](0.000s) ok 83 - host matching an IPv6 address (Subject Alternative Name 2): no stderr
[17:10:31.449](0.036s) ok 84 - host matching an IPv6 address in alternate form (Subject Alternative Name 2)
[17:10:31.449](0.000s) ok 85 - host matching an IPv6 address in alternate form (Subject Alternative Name 2): no stderr
[17:10:31.484](0.035s) ok 86 - host matching an IPv6 address in mixed form (Subject Alternative Name 2)
[17:10:31.485](0.000s) ok 87 - host matching an IPv6 address in mixed form (Subject Alternative Name 2): no stderr
[17:10:31.514](0.030s) ok 88 - host not matching an IPv6 address (Subject Alternative Name 2)
[17:10:31.515](0.000s) ok 89 - host not matching an IPv6 address (Subject Alternative Name 2): matches
[17:10:31.544](0.030s) ok 90 - IPv6 host with CIDR mask does not match
[17:10:31.544](0.000s) ok 91 - IPv6 host with CIDR mask does not match: matches
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45037
[17:10:31.787](0.243s) ok 92 - certificate with both a CN and SANs 1
[17:10:31.787](0.000s) ok 93 - certificate with both a CN and SANs 1: no stderr
[17:10:31.809](0.021s) ok 94 - certificate with both a CN and SANs 2
[17:10:31.809](0.000s) ok 95 - certificate with both a CN and SANs 2: no stderr
[17:10:31.834](0.025s) ok 96 - certificate with both a CN and SANs ignores CN
[17:10:31.834](0.000s) ok 97 - certificate with both a CN and SANs ignores CN: matches
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45052
[17:10:32.084](0.250s) ok 98 - certificate with both a CN and IP SANs matches CN
[17:10:32.084](0.000s) ok 99 - certificate with both a CN and IP SANs matches CN: no stderr
[17:10:32.103](0.019s) ok 100 - certificate with both a CN and IP SANs matches SAN 1
[17:10:32.103](0.000s) ok 101 - certificate with both a CN and IP SANs matches SAN 1: no stderr
[17:10:32.122](0.019s) ok 102 - certificate with both a CN and IP SANs matches SAN 2
[17:10:32.122](0.000s) ok 103 - certificate with both a CN and IP SANs matches SAN 2: no stderr
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45066
[17:10:32.363](0.241s) ok 104 - certificate with both an IP CN and IP SANs 1
[17:10:32.363](0.000s) ok 105 - certificate with both an IP CN and IP SANs 1: no stderr
[17:10:32.382](0.019s) ok 106 - certificate with both an IP CN and IP SANs 2
[17:10:32.382](0.000s) ok 107 - certificate with both an IP CN and IP SANs 2: no stderr
[17:10:32.399](0.018s) ok 108 - certificate with both an IP CN and IP SANs ignores CN
[17:10:32.400](0.000s) ok 109 - certificate with both an IP CN and IP SANs ignores CN: matches
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45080
[17:10:32.644](0.244s) ok 110 - certificate with both an IP CN and DNS SANs matches CN
[17:10:32.644](0.000s) ok 111 - certificate with both an IP CN and DNS SANs matches CN: no stderr
[17:10:32.663](0.019s) ok 112 - certificate with both an IP CN and DNS SANs matches SAN 1
[17:10:32.663](0.000s) ok 113 - certificate with both an IP CN and DNS SANs matches SAN 1: no stderr
[17:10:32.681](0.018s) ok 114 - certificate with both an IP CN and DNS SANs matches SAN 2
[17:10:32.681](0.000s) ok 115 - certificate with both an IP CN and DNS SANs matches SAN 2: no stderr
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45094
[17:10:32.916](0.235s) ok 116 - server certificate without CN or SANs sslmode=verify-ca
[17:10:32.916](0.000s) ok 117 - server certificate without CN or SANs sslmode=verify-ca: no stderr
[17:10:32.934](0.018s) ok 118 - server certificate without CN or SANs sslmode=verify-full
[17:10:32.934](0.000s) ok 119 - server certificate without CN or SANs sslmode=verify-full: matches
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45106
[17:10:33.164](0.230s) ok 120 - sslrootcert=system does not connect with private CA
[17:10:33.164](0.000s) ok 121 - sslrootcert=system does not connect with private CA: matches
[17:10:33.173](0.008s) ok 122 - sslrootcert=system only accepts sslmode=verify-full
[17:10:33.173](0.000s) ok 123 - sslrootcert=system only accepts sslmode=verify-full: matches
[17:10:33.193](0.021s) ok 124 - sslrootcert=system connects with overridden SSL_CERT_FILE
[17:10:33.194](0.000s) ok 125 - sslrootcert=system connects with overridden SSL_CERT_FILE: no stderr
[17:10:33.211](0.017s) ok 126 - sslrootcert=system defaults to sslmode=verify-full
[17:10:33.211](0.000s) ok 127 - sslrootcert=system defaults to sslmode=verify-full: matches
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45121
[17:10:33.457](0.246s) ok 128 - connects without client-side CRL
[17:10:33.457](0.000s) ok 129 - connects without client-side CRL: no stderr
[17:10:33.474](0.017s) ok 130 - does not connect with client-side CRL file
[17:10:33.474](0.000s) ok 131 - does not connect with client-side CRL file: matches
[17:10:33.495](0.020s) ok 132 - does not connect with client-side CRL directory
[17:10:33.495](0.000s) ok 133 - does not connect with client-side CRL directory: matches
# Running: psql -X -A -F , -P null=_null_ -d sslkey=invalid sslcert=invalid sslrootcert=invalid sslcrl=invalid sslcrldir=invalid user=ssltestuser dbname=trustdb hostaddr=127.0.0.1 host=common-name.pg-ssltest.test sslrootcert=invalid -c SELECT * FROM pg_stat_ssl WHERE pid = pg_backend_pid()
[17:10:33.512](0.018s) ok 134 - pg_stat_ssl view without client certificate: exit code 0
[17:10:33.513](0.000s) ok 135 - pg_stat_ssl view without client certificate: no stderr
[17:10:33.513](0.000s) ok 136 - pg_stat_ssl view without client certificate: matches
[17:10:33.530](0.018s) ok 137 - connection success with correct range of TLS protocol versions
[17:10:33.531](0.000s) ok 138 - connection success with correct range of TLS protocol versions: no stderr
[17:10:33.539](0.008s) ok 139 - connection failure with incorrect range of TLS protocol versions
[17:10:33.539](0.000s) ok 140 - connection failure with incorrect range of TLS protocol versions: matches
[17:10:33.546](0.008s) ok 141 - connection failure with an incorrect SSL protocol minimum bound
[17:10:33.546](0.000s) ok 142 - connection failure with an incorrect SSL protocol minimum bound: matches
[17:10:33.554](0.008s) ok 143 - connection failure with an incorrect SSL protocol maximum bound
[17:10:33.554](0.000s) ok 144 - connection failure with an incorrect SSL protocol maximum bound: matches
[17:10:33.554](0.000s) # running server tests
[17:10:33.572](0.018s) ok 145 - certificate authorization fails without client cert
[17:10:33.572](0.000s) ok 146 - certificate authorization fails without client cert: matches
[17:10:33.594](0.022s) ok 147 - certificate authorization succeeds with correct client cert in PEM format
[17:10:33.594](0.000s) ok 148 - certificate authorization succeeds with correct client cert in PEM format: no stderr
[17:10:33.613](0.019s) ok 149 - certificate authorization succeeds with correct client cert in DER format
[17:10:33.613](0.000s) ok 150 - certificate authorization succeeds with correct client cert in DER format: no stderr
[17:10:33.633](0.020s) ok 151 - certificate authorization succeeds with correct client cert in encrypted PEM format
[17:10:33.634](0.000s) ok 152 - certificate authorization succeeds with correct client cert in encrypted PEM format: no stderr
[17:10:33.654](0.021s) ok 153 - certificate authorization succeeds with correct client cert in encrypted DER format
[17:10:33.654](0.000s) ok 154 - certificate authorization succeeds with correct client cert in encrypted DER format: no stderr
[17:10:33.674](0.020s) ok 155 - certificate authorization succeeds with correct client cert and sslcertmode=require
[17:10:33.674](0.000s) ok 156 - certificate authorization succeeds with correct client cert and sslcertmode=require: no stderr
[17:10:33.694](0.020s) ok 157 - certificate authorization succeeds with correct client cert and sslcertmode=allow
[17:10:33.694](0.000s) ok 158 - certificate authorization succeeds with correct client cert and sslcertmode=allow: no stderr
[17:10:33.712](0.018s) ok 159 - certificate authorization fails with correct client cert and sslcertmode=disable
[17:10:33.713](0.000s) ok 160 - certificate authorization fails with correct client cert and sslcertmode=disable: matches
[17:10:33.729](0.017s) ok 161 - certificate authorization fails with correct client cert and wrong password in encrypted PEM format
[17:10:33.729](0.000s) ok 162 - certificate authorization fails with correct client cert and wrong password in encrypted PEM format: matches
[17:10:33.756](0.027s) ok 163 - certificate authorization succeeds with DN mapping
[17:10:33.756](0.000s) ok 164 - certificate authorization succeeds with DN mapping: no stderr
[17:10:33.756](0.000s) ok 165 - certificate authorization succeeds with DN mapping: log matches
[17:10:33.778](0.022s) ok 166 - certificate authorization succeeds with DN regex mapping
[17:10:33.778](0.000s) ok 167 - certificate authorization succeeds with DN regex mapping: no stderr
[17:10:33.799](0.021s) ok 168 - certificate authorization succeeds with CN mapping
[17:10:33.799](0.000s) ok 169 - certificate authorization succeeds with CN mapping: no stderr
[17:10:33.800](0.000s) ok 170 - certificate authorization succeeds with CN mapping: log matches
[17:10:33.800](0.000s) not ok 171 # TODO & SKIP Need Pty support
[17:10:33.800](0.000s) not ok 172 # TODO & SKIP Need Pty support
[17:10:33.800](0.000s) not ok 173 # TODO & SKIP Need Pty support
[17:10:33.800](0.000s) not ok 174 # TODO & SKIP Need Pty support
# Running: psql -X -A -F , -P null=_null_ -d sslkey=invalid sslcert=invalid sslrootcert=invalid sslcrl=invalid sslcrldir=invalid sslrootcert=ssl/root+server_ca.crt sslmode=require dbname=certdb hostaddr=127.0.0.1 host=localhost user=ssltestuser sslcert=ssl/client.crt  sslkey=/Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/tmp_test_0fx9/client.key -c SELECT * FROM pg_stat_ssl WHERE pid = pg_backend_pid()
[17:10:33.845](0.045s) ok 175 - pg_stat_ssl with client certificate: exit code 0
[17:10:33.845](0.000s) ok 176 - pg_stat_ssl with client certificate: no stderr
[17:10:33.845](0.000s) ok 177 - pg_stat_ssl with client certificate: matches
[17:10:33.861](0.016s) ok 178 - certificate authorization fails because of file permissions
[17:10:33.861](0.000s) ok 179 - certificate authorization fails because of file permissions: matches
[17:10:33.880](0.019s) ok 180 - certificate authorization fails with client cert belonging to another user
[17:10:33.880](0.000s) ok 181 - certificate authorization fails with client cert belonging to another user: matches
[17:10:33.899](0.019s) ok 182 - certificate authorization fails with revoked client cert
[17:10:33.899](0.000s) ok 183 - certificate authorization fails with revoked client cert: matches
[17:10:33.900](0.000s) ok 184 - certificate authorization fails with revoked client cert: log does not match
[17:10:33.921](0.021s) ok 185 - auth_option clientcert=verify-full succeeds with matching username and Common Name
[17:10:33.921](0.000s) ok 186 - auth_option clientcert=verify-full succeeds with matching username and Common Name: no stderr
[17:10:33.921](0.000s) ok 187 - auth_option clientcert=verify-full succeeds with matching username and Common Name: log matches
[17:10:33.940](0.019s) ok 188 - auth_option clientcert=verify-full fails with mismatching username and Common Name
[17:10:33.940](0.000s) ok 189 - auth_option clientcert=verify-full fails with mismatching username and Common Name: matches
[17:10:33.940](0.000s) ok 190 - auth_option clientcert=verify-full fails with mismatching username and Common Name: log does not match
[17:10:33.960](0.020s) ok 191 - auth_option clientcert=verify-ca succeeds with mismatching username and Common Name
[17:10:33.960](0.000s) ok 192 - auth_option clientcert=verify-ca succeeds with mismatching username and Common Name: no stderr
[17:10:33.960](0.000s) ok 193 - auth_option clientcert=verify-ca succeeds with mismatching username and Common Name: log matches
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45181
[17:10:34.200](0.240s) ok 194 - intermediate client certificate is provided by client
[17:10:34.200](0.000s) ok 195 - intermediate client certificate is provided by client: no stderr
[17:10:34.218](0.018s) ok 196 - intermediate client certificate is missing
[17:10:34.218](0.000s) ok 197 - intermediate client certificate is missing: matches
[17:10:34.236](0.018s) ok 198 - logged client certificate Subjects are truncated if they're too long
[17:10:34.236](0.000s) ok 199 - logged client certificate Subjects are truncated if they're too long: matches
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45195
[17:10:34.477](0.241s) ok 200 - intermediate client certificate is untrusted
[17:10:34.478](0.000s) ok 201 - intermediate client certificate is untrusted: matches
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45205
[17:10:34.721](0.243s) ok 202 - certificate authorization fails with revoked client cert with server-side CRL directory
[17:10:34.721](0.000s) ok 203 - certificate authorization fails with revoked client cert with server-side CRL directory: matches
[17:10:34.740](0.019s) ok 204 - certificate authorization fails with revoked UTF-8 client cert with server-side CRL directory
[17:10:34.740](0.000s) ok 205 - certificate authorization fails with revoked UTF-8 client cert with server-side CRL directory: matches
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45217
[17:10:34.974](0.233s) not ok 206 - connect with valid stapled ocsp response when sslocspstapling=1
[17:10:34.974](0.000s) #   Failed test 'connect with valid stapled ocsp response when sslocspstapling=1'
#   at /Users/admin/pgsql/src/test/ssl/t/001_ssltests.pl line 923.
[17:10:34.974](0.000s) #          got: '2'
#     expected: '0'
[17:10:34.974](0.000s) not ok 207 - connect with valid stapled ocsp response when sslocspstapling=1: no stderr
[17:10:34.974](0.000s) #   Failed test 'connect with valid stapled ocsp response when sslocspstapling=1: no stderr'
#   at /Users/admin/pgsql/src/test/ssl/t/001_ssltests.pl line 923.
[17:10:34.974](0.000s) #          got: 'psql: error: connection to server at "127.0.0.1", port 56663 failed: server closed the connection unexpectedly
# 	This probably means the server terminated abnormally
# 	before or while processing the request.
# SSL SYSCALL error: Connection reset by peer'
#     expected: ''
[17:10:34.995](0.021s) ok 208 - connect without requesting ocsp response when sslocspstapling=0
[17:10:34.995](0.000s) ok 209 - connect without requesting ocsp response when sslocspstapling=0: no stderr
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45229
[17:10:35.244](0.249s) ok 210 - failed with a revoked ocsp response when sslocspstapling=1
[17:10:35.269](0.025s) ok 211 - connect without requesting ocsp response when sslocspstapling=0
[17:10:35.269](0.000s) ok 212 - connect without requesting ocsp response when sslocspstapling=0: no stderr
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45241
[17:10:35.516](0.247s) ok 213 - failed with a revoked ocsp response when sslocspstapling=1
[17:10:35.540](0.024s) ok 214 - connect without requesting ocsp response when sslocspstapling=0
[17:10:35.540](0.000s) ok 215 - connect without requesting ocsp response when sslocspstapling=0: no stderr
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45253
[17:10:35.797](0.257s) ok 216 - failed with an expired ocsp response when sslocspstapling=1
[17:10:35.822](0.026s) ok 217 - connect without requesting ocsp response when sslocspstapling=0
[17:10:35.822](0.000s) ok 218 - connect without requesting ocsp response when sslocspstapling=0: no stderr
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45265
[17:10:36.073](0.250s) not ok 219 - connect with valid stapled ocsp response when sslocspstapling=1
[17:10:36.073](0.000s) #   Failed test 'connect with valid stapled ocsp response when sslocspstapling=1'
#   at /Users/admin/pgsql/src/test/ssl/t/001_ssltests.pl line 1001.
[17:10:36.073](0.000s) #          got: '2'
#     expected: '0'
[17:10:36.073](0.000s) not ok 220 - connect with valid stapled ocsp response when sslocspstapling=1: no stderr
[17:10:36.073](0.000s) #   Failed test 'connect with valid stapled ocsp response when sslocspstapling=1: no stderr'
#   at /Users/admin/pgsql/src/test/ssl/t/001_ssltests.pl line 1001.
[17:10:36.073](0.000s) #          got: 'psql: error: connection to server at "127.0.0.1", port 56663 failed: server closed the connection unexpectedly
# 	This probably means the server terminated abnormally
# 	before or while processing the request.
# SSL SYSCALL error: Connection reset by peer'
#     expected: ''
[17:10:36.099](0.026s) ok 221 - connect without requesting ocsp response when sslocspstapling=0
[17:10:36.099](0.000s) ok 222 - connect without requesting ocsp response when sslocspstapling=0: no stderr
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45277
[17:10:36.362](0.263s) ok 223 - failed with a revoked ocsp response when sslocspstapling=1
[17:10:36.388](0.027s) ok 224 - connect without requesting ocsp response when sslocspstapling=0
[17:10:36.389](0.000s) ok 225 - connect without requesting ocsp response when sslocspstapling=0: no stderr
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45289
[17:10:36.642](0.254s) ok 226 - failed with a revoked ocsp response when sslocspstapling=1
[17:10:36.667](0.025s) ok 227 - connect without requesting ocsp response when sslocspstapling=0
[17:10:36.667](0.000s) ok 228 - connect without requesting ocsp response when sslocspstapling=0: no stderr
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45301
[17:10:36.898](0.231s) ok 229 - failed with an expired ocsp response when sslocspstapling=1
[17:10:36.920](0.021s) ok 230 - connect without requesting ocsp response when sslocspstapling=0
[17:10:36.920](0.000s) ok 231 - connect without requesting ocsp response when sslocspstapling=0: no stderr
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... done
server started
# Postmaster PID for node "primary" is 45313
[17:10:37.156](0.237s) ok 232 - failed with an expired ocsp response when sslocspstapling=1
[17:10:37.179](0.023s) ok 233 - connect without requesting ocsp response when sslocspstapling=0
[17:10:37.179](0.000s) ok 234 - connect without requesting ocsp response when sslocspstapling=0: no stderr
### Restarting node "primary"
# Running: pg_ctl -w -D /Users/admin/pgsql/build/testrun/ssl/001_ssltests/data/t_001_ssltests_primary_data/pgdata -l /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log restart
waiting for server to shut down.... done
server stopped
waiting for server to start.... stopped waiting
pg_ctl: could not start server
Examine the log output.
# pg_ctl restart failed; see logfile for details: /Users/admin/pgsql/build/testrun/ssl/001_ssltests/log/001_ssltests_primary.log
# No postmaster PID for node "primary"
[17:10:37.400](0.220s) Bail out!  pg_ctl restart failed
# No postmaster PID for node "primary"