Mock Version: 3.5
Mock Version: 3.5
Mock Version: 3.5
ENTER ['do_with_status'](['bash', '--login', '-c', '/usr/bin/rpmbuild -bs --noclean --target noarch --nodeps /builddir/build/SPECS/crypto-policies.spec'], chrootPath='/mnt/compose/mock/dist-circle9-build-108155-59179/root'env={'TERM': 'vt100', 'SHELL': '/bin/bash', 'HOME': '/builddir', 'HOSTNAME': 'mock', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'LANG': 'C.UTF-8'}shell=Falselogger=<mockbuild.trace_decorator.getLog object at 0x7f9a929cea90>timeout=86400uid=993gid=135user='mockbuild'nspawn_args=[]unshare_net=TrueprintOutput=False)
Executing command: ['bash', '--login', '-c', '/usr/bin/rpmbuild -bs --noclean --target noarch --nodeps /builddir/build/SPECS/crypto-policies.spec'] with env {'TERM': 'vt100', 'SHELL': '/bin/bash', 'HOME': '/builddir', 'HOSTNAME': 'mock', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'LANG': 'C.UTF-8'} and shell False
Building target platforms: noarch
Building for target noarch
setting SOURCE_DATE_EPOCH=1690761600
Wrote: /builddir/build/SRPMS/crypto-policies-20230731-1.git94f0e2c.el9.src.rpm
Child return code was: 0
ENTER ['do_with_status'](['bash', '--login', '-c', '/usr/bin/rpmbuild -bb --noclean --target noarch --nodeps /builddir/build/SPECS/crypto-policies.spec'], chrootPath='/mnt/compose/mock/dist-circle9-build-108155-59179/root'env={'TERM': 'vt100', 'SHELL': '/bin/bash', 'HOME': '/builddir', 'HOSTNAME': 'mock', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'LANG': 'C.UTF-8'}shell=Falselogger=<mockbuild.trace_decorator.getLog object at 0x7f9a929cea90>timeout=86400uid=993gid=135user='mockbuild'nspawn_args=[]unshare_net=TrueprintOutput=False)
Executing command: ['bash', '--login', '-c', '/usr/bin/rpmbuild -bb --noclean --target noarch --nodeps /builddir/build/SPECS/crypto-policies.spec'] with env {'TERM': 'vt100', 'SHELL': '/bin/bash', 'HOME': '/builddir', 'HOSTNAME': 'mock', 'PATH': '/usr/bin:/bin:/usr/sbin:/sbin', 'PROMPT_COMMAND': 'printf "\\033]0;<mock-chroot>\\007"', 'PS1': '<mock-chroot> \\s-\\v\\$ ', 'LANG': 'C.UTF-8'} and shell False
Building target platforms: noarch
Building for target noarch
setting SOURCE_DATE_EPOCH=1690761600
Executing(%prep): /bin/sh -e /var/tmp/rpm-tmp.h1G12Y
+ umask 022
+ cd /builddir/build/BUILD
+ cd /builddir/build/BUILD
+ rm -rf fedora-crypto-policies-94f0e2c-94f0e2c4f7ebf2b1513b405d11227bae79ffe070
+ /usr/bin/gzip -dc /builddir/build/SOURCES/crypto-policies-git94f0e2c.tar.gz
+ /usr/bin/tar -xof -
+ STATUS=0
+ '[' 0 -ne 0 ']'
+ cd fedora-crypto-policies-94f0e2c-94f0e2c4f7ebf2b1513b405d11227bae79ffe070
+ /usr/bin/chmod -Rf a+rX,u+w,g-w,o-w .
+ RPM_EC=0
++ jobs -p
+ exit 0
Executing(%build): /bin/sh -e /var/tmp/rpm-tmp.V2q9eo
+ umask 022
+ cd /builddir/build/BUILD
+ cd fedora-crypto-policies-94f0e2c-94f0e2c4f7ebf2b1513b405d11227bae79ffe070
+ sed -i 's/MIN_RSA_DEFAULT = .*/MIN_RSA_DEFAULT = '\''RequiredRSASize'\''/' python/policygenerators/openssh.py
+ grep 'MIN_RSA_DEFAULT = '\''RequiredRSASize'\''' python/policygenerators/openssh.py
    MIN_RSA_DEFAULT = 'RequiredRSASize'
+ /usr/bin/make -O -j16 V=1 VERBOSE=1
asciidoc -v -d manpage -b docbook fips-finish-install.8.txt
xsltproc --nonet -o fips-finish-install.8 /usr/share/asciidoc/docbook-xsl/manpage.xsl fips-finish-install.8.xml
asciidoc: reading: /etc/asciidoc/asciidoc.conf
asciidoc: reading: /builddir/build/BUILD/fedora-crypto-policies-94f0e2c-94f0e2c4f7ebf2b1513b405d11227bae79ffe070/fips-finish-install.8.txt
asciidoc: reading: /etc/asciidoc/docbook45.conf
asciidoc: reading: /etc/asciidoc/filters/code/code-filter.conf
asciidoc: reading: /etc/asciidoc/filters/graphviz/graphviz-filter.conf
asciidoc: reading: /etc/asciidoc/filters/source/source-highlight-filter.conf
asciidoc: reading: /etc/asciidoc/lang-en.conf
asciidoc: writing: /builddir/build/BUILD/fedora-crypto-policies-94f0e2c-94f0e2c4f7ebf2b1513b405d11227bae79ffe070/fips-finish-install.8.xml
Note: Writing fips-finish-install.8
asciidoc -v -d manpage -b docbook fips-mode-setup.8.txt
xsltproc --nonet -o fips-mode-setup.8 /usr/share/asciidoc/docbook-xsl/manpage.xsl fips-mode-setup.8.xml
asciidoc: reading: /etc/asciidoc/asciidoc.conf
asciidoc: reading: /builddir/build/BUILD/fedora-crypto-policies-94f0e2c-94f0e2c4f7ebf2b1513b405d11227bae79ffe070/fips-mode-setup.8.txt
asciidoc: reading: /etc/asciidoc/docbook45.conf
asciidoc: reading: /etc/asciidoc/filters/code/code-filter.conf
asciidoc: reading: /etc/asciidoc/filters/graphviz/graphviz-filter.conf
asciidoc: reading: /etc/asciidoc/filters/source/source-highlight-filter.conf
asciidoc: reading: /etc/asciidoc/lang-en.conf
asciidoc: writing: /builddir/build/BUILD/fedora-crypto-policies-94f0e2c-94f0e2c4f7ebf2b1513b405d11227bae79ffe070/fips-mode-setup.8.xml
Note: Writing fips-mode-setup.8
asciidoc -v -d manpage -b docbook update-crypto-policies.8.txt
xsltproc --nonet -o update-crypto-policies.8 /usr/share/asciidoc/docbook-xsl/manpage.xsl update-crypto-policies.8.xml
asciidoc: reading: /etc/asciidoc/asciidoc.conf
asciidoc: reading: /builddir/build/BUILD/fedora-crypto-policies-94f0e2c-94f0e2c4f7ebf2b1513b405d11227bae79ffe070/update-crypto-policies.8.txt
asciidoc: reading: /etc/asciidoc/docbook45.conf
asciidoc: reading: /etc/asciidoc/filters/code/code-filter.conf
asciidoc: reading: /etc/asciidoc/filters/graphviz/graphviz-filter.conf
asciidoc: reading: /etc/asciidoc/filters/source/source-highlight-filter.conf
asciidoc: reading: /etc/asciidoc/lang-en.conf
asciidoc: writing: /builddir/build/BUILD/fedora-crypto-policies-94f0e2c-94f0e2c4f7ebf2b1513b405d11227bae79ffe070/update-crypto-policies.8.xml
Note: Writing update-crypto-policies.8
asciidoc -v -d manpage -b docbook crypto-policies.7.txt
xsltproc --nonet -o crypto-policies.7 /usr/share/asciidoc/docbook-xsl/manpage.xsl crypto-policies.7.xml
asciidoc: reading: /etc/asciidoc/asciidoc.conf
asciidoc: reading: /builddir/build/BUILD/fedora-crypto-policies-94f0e2c-94f0e2c4f7ebf2b1513b405d11227bae79ffe070/crypto-policies.7.txt
asciidoc: reading: /etc/asciidoc/docbook45.conf
asciidoc: reading: /etc/asciidoc/filters/code/code-filter.conf
asciidoc: reading: /etc/asciidoc/filters/graphviz/graphviz-filter.conf
asciidoc: reading: /etc/asciidoc/filters/source/source-highlight-filter.conf
asciidoc: reading: /etc/asciidoc/lang-en.conf
asciidoc: writing: /builddir/build/BUILD/fedora-crypto-policies-94f0e2c-94f0e2c4f7ebf2b1513b405d11227bae79ffe070/crypto-policies.7.xml
Note: Writing crypto-policies.7
mkdir -p output
python/build-crypto-policies.py --reloadcmds policies output
Saving config for bind for policy DEFAULT
Saving config for gnutls for policy DEFAULT
Saving config for java for policy DEFAULT
Saving config for javasystem for policy DEFAULT
Saving config for krb5 for policy DEFAULT
Saving config for libreswan for policy DEFAULT
Saving config for libssh for policy DEFAULT
Saving config for nss for policy DEFAULT
Saving config for openssh for policy DEFAULT
Saving config for opensshserver for policy DEFAULT
Saving config for opensslcnf for policy DEFAULT
Saving config for openssl_fips for policy DEFAULT
Saving config for openssl for policy DEFAULT
Saving config for bind for policy EMPTY
Saving config for gnutls for policy EMPTY
Saving config for java for policy EMPTY
Saving config for javasystem for policy EMPTY
Saving config for krb5 for policy EMPTY
Saving config for libreswan for policy EMPTY
Saving config for libssh for policy EMPTY
Saving config for nss for policy EMPTY
Saving config for openssh for policy EMPTY
Saving config for opensshserver for policy EMPTY
Saving config for opensslcnf for policy EMPTY
Saving config for openssl_fips for policy EMPTY
Saving config for openssl for policy EMPTY
Saving config for bind for policy FIPS
Saving config for gnutls for policy FIPS
Saving config for java for policy FIPS
Saving config for javasystem for policy FIPS
Saving config for krb5 for policy FIPS
Saving config for libreswan for policy FIPS
Saving config for libssh for policy FIPS
Saving config for openssh for policy FIPS
Saving config for opensshserver for policy FIPS
Saving config for opensslcnf for policy FIPS
Saving config for openssl_fips for policy FIPS
Saving config for openssl for policy FIPS
gnutls[2]: Enabled GnuTLS 3.7.6 logging...
gnutls[2]: getrandom random generator was selected
gnutls[2]: Intel SSSE3 was detected
gnutls[2]: Intel AES accelerator was detected
gnutls[2]: Intel GCM accelerator (AVX) was detected
gnutls[2]: cfg: marking hash SHA256 as secure
gnutls[2]: cfg: marking hash SHA384 as secure
gnutls[2]: cfg: marking hash SHA512 as secure
gnutls[2]: cfg: marking hash SHA3-256 as secure
gnutls[2]: cfg: marking hash SHA3-384 as secure
gnutls[2]: cfg: marking hash SHA3-512 as secure
gnutls[2]: cfg: marking hash SHA224 as secure
gnutls[2]: cfg: marking hash SHA3-224 as secure
gnutls[2]: cfg: marking hash SHAKE-256 as secure
gnutls[2]: cfg: enabling MAC AEAD for TLS
gnutls[2]: cfg: enabling MAC SHA1 for TLS
gnutls[2]: cfg: enabling MAC SHA512 for TLS
gnutls[2]: cfg: enabling group X25519 for TLS
gnutls[2]: cfg: enabling group SECP256R1 for TLS
gnutls[2]: cfg: enabling group X448 for TLS
gnutls[2]: cfg: enabling group SECP521R1 for TLS
gnutls[2]: cfg: enabling group SECP384R1 for TLS
gnutls[2]: cfg: enabling group FFDHE2048 for TLS
gnutls[2]: cfg: enabling group FFDHE3072 for TLS
gnutls[2]: cfg: enabling group FFDHE4096 for TLS
gnutls[2]: cfg: enabling group FFDHE6144 for TLS
gnutls[2]: cfg: enabling group FFDHE8192 for TLS
gnutls[2]: cfg: marking signature ECDSA-SHA3-256 as secure
gnutls[2]: cfg: marking signature ECDSA-SHA256 as secure
gnutls[2]: cfg: marking signature ECDSA-SECP256R1-SHA256 as secure
gnutls[2]: cfg: marking signature ECDSA-SHA3-384 as secure
gnutls[2]: cfg: marking signature ECDSA-SHA384 as secure
gnutls[2]: cfg: marking signature ECDSA-SECP384R1-SHA384 as secure
gnutls[2]: cfg: marking signature ECDSA-SHA3-512 as secure
gnutls[2]: cfg: marking signature ECDSA-SHA512 as secure
gnutls[2]: cfg: marking signature ECDSA-SECP521R1-SHA512 as secure
gnutls[2]: cfg: marking signature EdDSA-Ed25519 as secure
gnutls[2]: cfg: marking signature EdDSA-Ed448 as secure
gnutls[2]: cfg: marking signature RSA-PSS-SHA256 as secure
gnutls[2]: cfg: marking signature RSA-PSS-SHA384 as secure
gnutls[2]: cfg: marking signature RSA-PSS-SHA512 as secure
gnutls[2]: cfg: marking signature RSA-PSS-RSAE-SHA256 as secure
gnutls[2]: cfg: marking signature RSA-PSS-RSAE-SHA384 as secure
gnutls[2]: cfg: marking signature RSA-PSS-RSAE-SHA512 as secure
gnutls[2]: cfg: marking signature RSA-SHA3-256 as secure
gnutls[2]: cfg: marking signature RSA-SHA256 as secure
gnutls[2]: cfg: marking signature RSA-SHA3-384 as secure
gnutls[2]: cfg: marking signature RSA-SHA384 as secure
gnutls[2]: cfg: marking signature RSA-SHA3-512 as secure
gnutls[2]: cfg: marking signature RSA-SHA512 as secure
gnutls[2]: cfg: marking signature ECDSA-SHA224 as secure
gnutls[2]: cfg: marking signature RSA-SHA224 as secure
gnutls[2]: cfg: marking signature ECDSA-SHA3-224 as secure
gnutls[2]: cfg: marking signature RSA-SHA3-224 as secure
gnutls[2]: cfg: marking signature ECDSA-SHA3-256 as secure for certs
gnutls[2]: cfg: marking signature ECDSA-SHA256 as secure for certs
gnutls[2]: cfg: marking signature ECDSA-SECP256R1-SHA256 as secure for certs
gnutls[2]: cfg: marking signature ECDSA-SHA3-384 as secure for certs
gnutls[2]: cfg: marking signature ECDSA-SHA384 as secure for certs
gnutls[2]: cfg: marking signature ECDSA-SECP384R1-SHA384 as secure for certs
gnutls[2]: cfg: marking signature ECDSA-SHA3-512 as secure for certs
gnutls[2]: cfg: marking signature ECDSA-SHA512 as secure for certs
gnutls[2]: cfg: marking signature ECDSA-SECP521R1-SHA512 as secure for certs
gnutls[2]: cfg: marking signature EdDSA-Ed25519 as secure for certs
gnutls[2]: cfg: marking signature EdDSA-Ed448 as secure for certs
gnutls[2]: cfg: marking signature RSA-PSS-SHA256 as secure for certs
gnutls[2]: cfg: marking signature RSA-PSS-SHA384 as secure for certs
gnutls[2]: cfg: marking signature RSA-PSS-SHA512 as secure for certs
gnutls[2]: cfg: marking signature RSA-PSS-RSAE-SHA256 as secure for certs
gnutls[2]: cfg: marking signature RSA-PSS-RSAE-SHA384 as secure for certs
gnutls[2]: cfg: marking signature RSA-PSS-RSAE-SHA512 as secure for certs
gnutls[2]: cfg: marking signature RSA-SHA3-256 as secure for certs
gnutls[2]: cfg: marking signature RSA-SHA256 as secure for certs
gnutls[2]: cfg: marking signature RSA-SHA3-384 as secure for certs
gnutls[2]: cfg: marking signature RSA-SHA384 as secure for certs
gnutls[2]: cfg: marking signature RSA-SHA3-512 as secure for certs
gnutls[2]: cfg: marking signature RSA-SHA512 as secure for certs
gnutls[2]: cfg: marking signature ECDSA-SHA224 as secure for certs
gnutls[2]: cfg: marking signature RSA-SHA224 as secure for certs
gnutls[2]: cfg: marking signature ECDSA-SHA3-224 as secure for certs
gnutls[2]: cfg: marking signature RSA-SHA3-224 as secure for certs
gnutls[2]: cfg: enabling curve X25519
gnutls[2]: cfg: enabling curve SECP256R1
gnutls[2]: cfg: enabling curve X448
gnutls[2]: cfg: enabling curve SECP521R1
gnutls[2]: cfg: enabling curve SECP384R1
gnutls[2]: cfg: enabling curve Ed25519
gnutls[2]: cfg: enabling curve Ed448
gnutls[2]: cfg: enabling cipher AES-256-GCM for TLS
gnutls[2]: cfg: enabling cipher AES-256-CCM for TLS
gnutls[2]: cfg: enabling cipher CHACHA20-POLY1305 for TLS
gnutls[2]: cfg: enabling cipher AES-256-CBC for TLS
gnutls[2]: cfg: enabling cipher AES-128-GCM for TLS
gnutls[2]: cfg: enabling cipher AES-128-CCM for TLS
gnutls[2]: cfg: enabling cipher AES-128-CBC for TLS
gnutls[2]: cfg: enabling key exchange ECDHE-RSA for TLS
gnutls[2]: cfg: enabling key exchange ECDHE-ECDSA for TLS
gnutls[2]: cfg: enabling key exchange RSA for TLS
gnutls[2]: cfg: enabling key exchange DHE-RSA for TLS
gnutls[2]: cfg: enabling version TLS1.3
gnutls[2]: cfg: enabling version TLS1.2
gnutls[2]: cfg: enabling version DTLS1.2
gnutls[2]: cfg: adding priority: SYSTEM -> NONE
gnutls[2]: cfg: loaded system config /tmp/tmpnmoqqmdc mtime 1700683882
gnutls[2]: cfg: deferred setting system-wide priority string
NSS-POLICY-INFO: LOADED-SUCCESSFULLY
NSS-POLICY-INFO: PRIME256V1 is enabled for KX
NSS-POLICY-INFO: PRIME256V1 is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: SECP256R1 is enabled for KX
NSS-POLICY-INFO: SECP256R1 is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: SECP384R1 is enabled for KX
NSS-POLICY-INFO: SECP384R1 is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: SECP521R1 is enabled for KX
NSS-POLICY-INFO: SECP521R1 is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: CURVE25519 is enabled for KX
NSS-POLICY-INFO: CURVE25519 is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: SHA224 is enabled for KX
NSS-POLICY-INFO: SHA224 is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: SHA256 is enabled for KX
NSS-POLICY-INFO: SHA256 is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: SHA384 is enabled for KX
NSS-POLICY-INFO: SHA384 is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: SHA512 is enabled for KX
NSS-POLICY-INFO: SHA512 is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: HMAC-SHA1 is enabled for SSL
NSS-POLICY-INFO: HMAC-SHA256 is enabled for SSL
NSS-POLICY-INFO: HMAC-SHA384 is enabled for SSL
NSS-POLICY-INFO: HMAC-SHA512 is enabled for SSL
NSS-POLICY-INFO: AES128-CBC is enabled for SSL
NSS-POLICY-INFO: AES256-CBC is enabled for SSL
NSS-POLICY-INFO: AES128-GCM is enabled for SSL
NSS-POLICY-INFO: AES256-GCM is enabled for SSL
NSS-POLICY-INFO: CHACHA20-POLY1305 is enabled for SSL
NSS-POLICY-INFO: RSA is enabled for KX
NSS-POLICY-INFO: DHE-RSA is enabled for KX
NSS-POLICY-INFO: ECDHE-ECDSA is enabled for KX
NSS-POLICY-INFO: ECDHE-RSA is enabled for KX
NSS-POLICY-INFO: RSA-PKCS is enabled for KX
NSS-POLICY-INFO: RSA-PKCS is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: RSA-PSS is enabled for KX
NSS-POLICY-INFO: RSA-PSS is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: ECDSA is enabled for KX
NSS-POLICY-INFO: ECDSA is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: NUMBER-OF-SSL-ALG-KX: 16
NSS-POLICY-INFO: NUMBER-OF-SSL-ALG: 9
NSS-POLICY-INFO: NUMBER-OF-CERT-SIG: 12
NSS-POLICY-INFO: NUMBER-OF-ECC: 5
NSS-POLICY-INFO: NUMBER-OF-HASH: 4
NSS-POLICY-INFO: NUMBER-OF-MAC: 4
NSS-POLICY-INFO: NUMBER-OF-CIPHER: 5
NSS-POLICY-INFO: NUMBER-OF-OTHER-KX: 4
NSS-POLICY-INFO: NUMBER-OF-OTHER-SIGN: 3
NSS-POLICY-INFO: ciphersuite TLS_AES_128_GCM_SHA256 is enabled
NSS-POLICY-INFO: ciphersuite TLS_CHACHA20_POLY1305_SHA256 is enabled
NSS-POLICY-INFO: ciphersuite TLS_AES_256_GCM_SHA384 is enabled
NSS-POLICY-INFO: ciphersuite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 is enabled
NSS-POLICY-INFO: ciphersuite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 is enabled
NSS-POLICY-INFO: ciphersuite TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 is enabled
NSS-POLICY-INFO: ciphersuite TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 is enabled
NSS-POLICY-INFO: ciphersuite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 is enabled
NSS-POLICY-INFO: ciphersuite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 is enabled
NSS-POLICY-INFO: ciphersuite TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA is enabled
NSS-POLICY-INFO: ciphersuite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA is enabled
NSS-POLICY-INFO: ciphersuite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA is enabled
NSS-POLICY-INFO: ciphersuite TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 is enabled
NSS-POLICY-INFO: ciphersuite TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 is enabled
NSS-POLICY-INFO: ciphersuite TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA is enabled
NSS-POLICY-INFO: ciphersuite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 is enabled
NSS-POLICY-INFO: ciphersuite TLS_DHE_RSA_WITH_CHACHA20_POLY1305_SHA256 is enabled
NSS-POLICY-INFO: ciphersuite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 is enabled
NSS-POLICY-INFO: ciphersuite TLS_DHE_RSA_WITH_AES_128_CBC_SHA is enabled
NSS-POLICY-INFO: ciphersuite TLS_DHE_RSA_WITH_AES_128_CBC_SHA256 is enabled
NSS-POLICY-INFO: ciphersuite TLS_DHE_RSA_WITH_AES_256_CBC_SHA is enabled
NSS-POLICY-INFO: ciphersuite TLS_DHE_RSA_WITH_AES_256_CBC_SHA256 is enabled
NSS-POLICY-INFO: ciphersuite TLS_RSA_WITH_AES_128_GCM_SHA256 is enabled
NSS-POLICY-INFO: ciphersuite TLS_RSA_WITH_AES_256_GCM_SHA384 is enabled
NSS-POLICY-INFO: ciphersuite TLS_RSA_WITH_AES_128_CBC_SHA is enabled
NSS-POLICY-INFO: ciphersuite TLS_RSA_WITH_AES_128_CBC_SHA256 is enabled
NSS-POLICY-INFO: ciphersuite TLS_RSA_WITH_AES_256_CBC_SHA is enabled
NSS-POLICY-INFO: ciphersuite TLS_RSA_WITH_AES_256_CBC_SHA256 is enabled
NSS-POLICY-INFO: NUMBER-OF-CIPHERSUITES: 28
NSS-POLICY-INFO: NUMBER-OF-TLS-VERSIONS: 2
NSS-POLICY-INFO: NUMBER-OF-DTLS-VERSIONS: 1
Pseudo-terminal will not be allocated because stdin is not a terminal.
gnutls[2]: Enabled GnuTLS 3.7.6 logging...
gnutls[2]: getrandom random generator was selected
gnutls[2]: Intel SSSE3 was detected
gnutls[2]: Intel AES accelerator was detected
gnutls[2]: Intel GCM accelerator (AVX) was detected
gnutls[2]: cfg: marking hash SHA256 as secure
gnutls[2]: cfg: marking hash SHA384 as secure
gnutls[2]: cfg: marking hash SHA512 as secure
gnutls[2]: cfg: marking hash SHA224 as secure
gnutls[2]: cfg: marking hash SHA3-256 as secure
gnutls[2]: cfg: marking hash SHA3-384 as secure
gnutls[2]: cfg: marking hash SHA3-512 as secure
gnutls[2]: cfg: marking hash SHAKE-256 as secure
gnutls[2]: cfg: enabling MAC AEAD for TLS
gnutls[2]: cfg: enabling MAC SHA512 for TLS
gnutls[2]: cfg: enabling group SECP256R1 for TLS
gnutls[2]: cfg: enabling group SECP521R1 for TLS
gnutls[2]: cfg: enabling group SECP384R1 for TLS
gnutls[2]: cfg: enabling group FFDHE2048 for TLS
gnutls[2]: cfg: enabling group FFDHE3072 for TLS
gnutls[2]: cfg: enabling group FFDHE4096 for TLS
gnutls[2]: cfg: enabling group FFDHE6144 for TLS
gnutls[2]: cfg: enabling group FFDHE8192 for TLS
gnutls[2]: cfg: marking signature ECDSA-SHA3-256 as secure
gnutls[2]: cfg: marking signature ECDSA-SHA256 as secure
gnutls[2]: cfg: marking signature ECDSA-SECP256R1-SHA256 as secure
gnutls[2]: cfg: marking signature ECDSA-SHA3-384 as secure
gnutls[2]: cfg: marking signature ECDSA-SHA384 as secure
gnutls[2]: cfg: marking signature ECDSA-SECP384R1-SHA384 as secure
gnutls[2]: cfg: marking signature ECDSA-SHA3-512 as secure
gnutls[2]: cfg: marking signature ECDSA-SHA512 as secure
gnutls[2]: cfg: marking signature ECDSA-SECP521R1-SHA512 as secure
gnutls[2]: cfg: marking signature RSA-PSS-SHA256 as secure
gnutls[2]: cfg: marking signature RSA-PSS-SHA384 as secure
gnutls[2]: cfg: marking signature RSA-PSS-SHA512 as secure
gnutls[2]: cfg: marking signature RSA-PSS-RSAE-SHA256 as secure
gnutls[2]: cfg: marking signature RSA-PSS-RSAE-SHA384 as secure
gnutls[2]: cfg: marking signature RSA-PSS-RSAE-SHA512 as secure
gnutls[2]: cfg: marking signature RSA-SHA3-256 as secure
gnutls[2]: cfg: marking signature RSA-SHA256 as secure
gnutls[2]: cfg: marking signature RSA-SHA3-384 as secure
gnutls[2]: cfg: marking signature RSA-SHA384 as secure
gnutls[2]: cfg: marking signature RSA-SHA3-512 as secure
gnutls[2]: cfg: marking signature RSA-SHA512 as secure
gnutls[2]: cfg: marking signature ECDSA-SHA224 as secure
gnutls[2]: cfg: marking signature RSA-SHA224 as secure
gnutls[2]: cfg: marking signature ECDSA-SHA3-256 as secure for certs
gnutls[2]: cfg: marking signature ECDSA-SHA256 as secure for certs
gnutls[2]: cfg: marking signature ECDSA-SECP256R1-SHA256 as secure for certs
gnutls[2]: cfg: marking signature ECDSA-SHA3-384 as secure for certs
gnutls[2]: cfg: marking signature ECDSA-SHA384 as secure for certs
gnutls[2]: cfg: marking signature ECDSA-SECP384R1-SHA384 as secure for certs
gnutls[2]: cfg: marking signature ECDSA-SHA3-512 as secure for certs
gnutls[2]: cfg: marking signature ECDSA-SHA512 as secure for certs
gnutls[2]: cfg: marking signature ECDSA-SECP521R1-SHA512 as secure for certs
gnutls[2]: cfg: marking signature RSA-PSS-SHA256 as secure for certs
gnutls[2]: cfg: marking signature RSA-PSS-SHA384 as secure for certs
gnutls[2]: cfg: marking signature RSA-PSS-SHA512 as secure for certs
gnutls[2]: cfg: marking signature RSA-PSS-RSAE-SHA256 as secure for certs
gnutls[2]: cfg: marking signature RSA-PSS-RSAE-SHA384 as secure for certs
gnutls[2]: cfg: marking signature RSA-PSS-RSAE-SHA512 as secure for certs
gnutls[2]: cfg: marking signature RSA-SHA3-256 as secure for certs
gnutls[2]: cfg: marking signature RSA-SHA256 as secure for certs
gnutls[2]: cfg: marking signature RSA-SHA3-384 as secure for certs
gnutls[2]: cfg: marking signature RSA-SHA384 as secure for certs
gnutls[2]: cfg: marking signature RSA-SHA3-512 as secure for certs
gnutls[2]: cfg: marking signature RSA-SHA512 as secure for certs
gnutls[2]: cfg: marking signature ECDSA-SHA224 as secure for certs
gnutls[2]: cfg: marking signature RSA-SHA224 as secure for certs
gnutls[2]: cfg: enabling curve SECP256R1
gnutls[2]: cfg: enabling curve SECP521R1
gnutls[2]: cfg: enabling curve SECP384R1
gnutls[2]: cfg: enabling cipher AES-256-GCM for TLS
gnutls[2]: cfg: enabling cipher AES-256-CCM for TLS
gnutls[2]: cfg: enabling cipher AES-128-GCM for TLS
gnutls[2]: cfg: enabling cipher AES-128-CCM for TLS
gnutls[2]: cfg: enabling key exchange ECDHE-RSA for TLS
gnutls[2]: cfg: enabling key exchange ECDHE-ECDSA for TLS
gnutls[2]: cfg: enabling key exchange DHE-RSA for TLS
gnutls[2]: cfg: enabling version TLS1.3
gnutls[2]: cfg: enabling version TLS1.2
gnutls[2]: cfg: enabling version DTLS1.2
gnutls[2]: cfg: adding priority: SYSTEM -> NONE
gnutls[2]: cfg: loaded system config /tmp/tmp_06fobqy mtime 1700683882
gnutls[2]: cfg: deferred setting system-wide priority string
NSS-POLICY-FAIL allow: unknown identifier: TLS-REQUIRE-EMS
NSS-POLICY-INFO: LOADED-SUCCESSFULLY
NSS-POLICY-INFO: PRIME256V1 is enabled for KX
NSS-POLICY-INFO: PRIME256V1 is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: SECP256R1 is enabled for KX
NSS-POLICY-INFO: SECP256R1 is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: SECP384R1 is enabled for KX
NSS-POLICY-INFO: SECP384R1 is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: SECP521R1 is enabled for KX
NSS-POLICY-INFO: SECP521R1 is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: SHA224 is enabled for KX
NSS-POLICY-INFO: SHA224 is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: SHA256 is enabled for KX
NSS-POLICY-INFO: SHA256 is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: SHA384 is enabled for KX
NSS-POLICY-INFO: SHA384 is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: SHA512 is enabled for KX
NSS-POLICY-INFO: SHA512 is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: HMAC-SHA256 is enabled for SSL
NSS-POLICY-INFO: HMAC-SHA384 is enabled for SSL
NSS-POLICY-INFO: HMAC-SHA512 is enabled for SSL
NSS-POLICY-INFO: AES128-GCM is enabled for SSL
NSS-POLICY-INFO: AES256-GCM is enabled for SSL
NSS-POLICY-INFO: DHE-RSA is enabled for KX
NSS-POLICY-INFO: ECDHE-ECDSA is enabled for KX
NSS-POLICY-INFO: ECDHE-RSA is enabled for KX
NSS-POLICY-INFO: RSA-PKCS is enabled for KX
NSS-POLICY-INFO: RSA-PKCS is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: RSA-PSS is enabled for KX
NSS-POLICY-INFO: RSA-PSS is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: ECDSA is enabled for KX
NSS-POLICY-INFO: ECDSA is enabled for CERT-SIGNATURE
NSS-POLICY-INFO: NUMBER-OF-SSL-ALG-KX: 14
NSS-POLICY-INFO: NUMBER-OF-SSL-ALG: 5
NSS-POLICY-INFO: NUMBER-OF-CERT-SIG: 11
NSS-POLICY-INFO: NUMBER-OF-ECC: 4
NSS-POLICY-INFO: NUMBER-OF-HASH: 4
NSS-POLICY-INFO: NUMBER-OF-MAC: 3
NSS-POLICY-INFO: NUMBER-OF-CIPHER: 2
NSS-POLICY-INFO: NUMBER-OF-OTHER-KX: 3
NSS-POLICY-INFO: NUMBER-OF-OTHER-SIGN: 3
NSS-POLICY-INFO: ciphersuite TLS_AES_128_GCM_SHA256 is enabled
NSS-POLICY-INFO: ciphersuite TLS_AES_256_GCM_SHA384 is enabled
NSS-POLICY-INFO: ciphersuite TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 is enabled
NSS-POLICY-INFO: ciphersuite TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 is enabled
NSS-POLICY-INFO: ciphersuite TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 is enabled
NSS-POLICY-INFO: ciphersuite TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 is enabled
NSS-POLICY-INFO: ciphersuite TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 is enabled
NSS-POLICY-INFO: ciphersuite TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 is enabled
NSS-POLICY-INFO: NUMBER-OF-CIPHERSUITES: 8
NSS-POLICY-INFO: NUMBER-OF-TLS-VERSIONS: 2
NSS-POLICY-INFO: NUMBER-OF-DTLS-VERSIONS: 1
NSS-POLICY-FAIL
There is a warning in NSS generated policy
Policy:
library=
name=Policy
NSS=flags=policyOnly,moduleDB
config="disallow=ALL allow=HMAC-SHA256:HMAC-SHA384:HMAC-SHA512:SECP256R1:SECP521R1:SECP384R1:aes256-gcm:aes128-gcm:SHA256:SHA384:SHA512:SHA224:ECDHE-RSA:ECDHE-ECDSA:DHE-RSA:TLS-REQUIRE-EMS:ECDSA:RSA-PSS:RSA-PKCS:tls-version-min=tls1.2:dtls-version-min=dtls1.2:DH-MIN=2048:DSA-MIN=2048:RSA-MIN=2048"
Error testing config for nss
Pseudo-terminal will not be allocated because stdin is not a terminal.
make: *** [Makefile:23: build] Error 3
RPM build errors:
error: Bad exit status from /var/tmp/rpm-tmp.V2q9eo (%build)
    Bad exit status from /var/tmp/rpm-tmp.V2q9eo (%build)
Child return code was: 1
EXCEPTION: [Error('Command failed: \n # bash --login -c /usr/bin/rpmbuild -bb --noclean --target noarch --nodeps /builddir/build/SPECS/crypto-policies.spec\n', 1)]
Traceback (most recent call last):
  File "/usr/lib/python3.6/site-packages/mockbuild/trace_decorator.py", line 93, in trace
    result = func(*args, **kw)
  File "/usr/lib/python3.6/site-packages/mockbuild/util.py", line 598, in do_with_status
    raise exception.Error("Command failed: \n # %s\n%s" % (command, output), child.returncode)
mockbuild.exception.Error: Command failed: 
 # bash --login -c /usr/bin/rpmbuild -bb --noclean --target noarch --nodeps /builddir/build/SPECS/crypto-policies.spec