(List
  (= scope=<EAssignScope.GLOBAL 1> flags=0 words=[] bindings=[('password', {[LIT_CHARS pass] [LIT_OTHER ":"] [LIT_CHARS dartdart]})])
  (If
    (Com {[LIT_DBRACKET_LIKE "["]} {[LIT_CHARS -d]} {[DQ [LIT_CHARS certificates]]} {[LIT_DBRACKET_LIKE "]"]}    )
    (List
      (Com {[LIT_CHARS mv]} {[LIT_CHARS certificates/server_key.pem]} {[LIT_CHARS certificates/untrusted_server_key.pem]}      )
      (Com {[LIT_CHARS mv]} {[LIT_CHARS certificates/server_chain.pem]} {[LIT_CHARS certificates/untrusted_server_chain.pem]}      )
    )
    (ElseTrue)
    (Com {[LIT_CHARS mkdir]} {[LIT_CHARS certificates]}    )
  )
  (Com {[LIT_CHARS mkdir]} {[LIT_CHARS -p]} {[LIT_CHARS certificate_authority]}  )
  (Com {[LIT_CHARS cd]} {[LIT_CHARS certificate_authority]}  )
  (Com {[LIT_CHARS openssl]} {[LIT_CHARS req]} {[LIT_CHARS -subj]} {[LIT_CHARS /CN] [LIT_DBRACKET_LIKE "="] [LIT_CHARS rootauthority]} {[LIT_CHARS -set_serial]} {[LIT_CHARS 1]} {[LIT_CHARS -batch]} {[LIT_CHARS -verbose]} {[LIT_CHARS -passout]} {[VarSub password]} {[LIT_CHARS -new]} {[LIT_CHARS -x509]} {[LIT_CHARS -keyout]} {[LIT_CHARS root_authority_key.pem]} {[LIT_CHARS -out]} {[LIT_CHARS root_authority.pem]} {[LIT_CHARS -days]} {[LIT_CHARS 3650]}  )
  (Com {[LIT_CHARS openssl]} {[LIT_CHARS req]} {[LIT_CHARS -subj]} {[LIT_CHARS /CN] [LIT_DBRACKET_LIKE "="] [LIT_CHARS intermediateauthority]} {[LIT_CHARS -batch]} {[LIT_CHARS -verbose]} {[LIT_CHARS -passout]} {[VarSub password]} {[LIT_CHARS -new]} {[LIT_CHARS -keyout]} {[LIT_CHARS intermediate_authority_key.pem]} {[LIT_CHARS -out]} {[LIT_CHARS intermediate_authority_request.pem]}  )
  (Com {[LIT_CHARS openssl]} {[LIT_CHARS x509]} {[LIT_CHARS -req]} {[LIT_CHARS -in]} {[LIT_CHARS intermediate_authority_request.pem]} {[LIT_CHARS -out]} {[LIT_CHARS intermediate_authority.pem]} {[LIT_CHARS -set_serial]} {[LIT_CHARS 2]} {[LIT_CHARS -CA]} {[LIT_CHARS root_authority.pem]} {[LIT_CHARS -CAkey]} {[LIT_CHARS root_authority_key.pem]} {[LIT_CHARS -passin]} {[VarSub password]} {[LIT_CHARS -extfile]} {[LIT_CHARS ../sample_certificate_v3_extensions]} {[LIT_CHARS -extensions]} {[LIT_CHARS intermediate_authority]} {[LIT_CHARS -days]} {[LIT_CHARS 3650]}  )
  (Com {[LIT_CHARS openssl]} {[LIT_CHARS req]} {[LIT_CHARS -subj]} {[LIT_CHARS /CN] [LIT_DBRACKET_LIKE "="] [LIT_CHARS localhost]} {[LIT_CHARS -batch]} {[LIT_CHARS -verbose]} {[LIT_CHARS -passout]} {[VarSub password]} {[LIT_CHARS -new]} {[LIT_CHARS -keyout]} {[LIT_CHARS localhost_key.pem]} {[LIT_CHARS -out]} {[LIT_CHARS localhost_request.pem]}  )
  (Com {[LIT_CHARS openssl]} {[LIT_CHARS x509]} {[LIT_CHARS -req]} {[LIT_CHARS -in]} {[LIT_CHARS localhost_request.pem]} {[LIT_CHARS -out]} {[LIT_CHARS localhost.pem]} {[LIT_CHARS -set_serial]} {[LIT_CHARS 1]} {[LIT_CHARS -CA]} {[LIT_CHARS intermediate_authority.pem]} {[LIT_CHARS -CAkey]} {[LIT_CHARS intermediate_authority_key.pem]} {[LIT_CHARS -passin]} {[VarSub password]} {[LIT_CHARS -extfile]} {[LIT_CHARS ../sample_certificate_v3_extensions]} {[LIT_CHARS -extensions]} {[LIT_CHARS localhost]} {[LIT_CHARS -days]} {[LIT_CHARS 3650]}  )
  (Com {[LIT_CHARS openssl]} {[LIT_CHARS req]} {[LIT_CHARS -subj]} {[LIT_CHARS /CN] [LIT_DBRACKET_LIKE "="] [LIT_CHARS clientauthority]} {[LIT_CHARS -set_serial]} {[LIT_CHARS 1]} {[LIT_CHARS -batch]} {[LIT_CHARS -verbose]} {[LIT_CHARS -passout]} {[VarSub password]} {[LIT_CHARS -new]} {[LIT_CHARS -x509]} {[LIT_CHARS -keyout]} {[LIT_CHARS client_authority_key.pem]} {[LIT_CHARS -out]} {[LIT_CHARS client_authority.pem]} {[LIT_CHARS -config]} {[LIT_CHARS ../sample_certificate_v3_extensions]} {[LIT_CHARS -extensions]} {[LIT_CHARS client_authority]} {[LIT_CHARS -days]} {[LIT_CHARS 3650]}  )
  (Com {[LIT_CHARS openssl]} {[LIT_CHARS req]} {[LIT_CHARS -subj]} {[LIT_CHARS /CN] [LIT_DBRACKET_LIKE "="] [LIT_CHARS user1]} {[LIT_CHARS -batch]} {[LIT_CHARS -verbose]} {[LIT_CHARS -passout]} {[VarSub password]} {[LIT_CHARS -new]} {[LIT_CHARS -keyout]} {[LIT_CHARS client1_key.pem]} {[LIT_CHARS -out]} {[LIT_CHARS client1_request.pem]}  )
  (Com {[LIT_CHARS openssl]} {[LIT_CHARS req]} {[LIT_CHARS -subj]} {[LIT_CHARS /CN] [LIT_DBRACKET_LIKE "="] [LIT_CHARS user2]} {[LIT_CHARS -batch]} {[LIT_CHARS -verbose]} {[LIT_CHARS -passout]} {[VarSub password]} {[LIT_CHARS -new]} {[LIT_CHARS -keyout]} {[LIT_CHARS client2_key.pem]} {[LIT_CHARS -out]} {[LIT_CHARS client2_request.pem]}  )
  (Com {[LIT_CHARS openssl]} {[LIT_CHARS x509]} {[LIT_CHARS -req]} {[LIT_CHARS -in]} {[LIT_CHARS client1_request.pem]} {[LIT_CHARS -out]} {[LIT_CHARS client1.pem]} {[LIT_CHARS -set_serial]} {[LIT_CHARS 2]} {[LIT_CHARS -CA]} {[LIT_CHARS client_authority.pem]} {[LIT_CHARS -CAkey]} {[LIT_CHARS client_authority_key.pem]} {[LIT_CHARS -passin]} {[VarSub password]} {[LIT_CHARS -extfile]} {[LIT_CHARS ../sample_certificate_v3_extensions]} {[LIT_CHARS -extensions]} {[LIT_CHARS client_certificate]} {[LIT_CHARS -days]} {[LIT_CHARS 3650]}  )
  (Com {[LIT_CHARS openssl]} {[LIT_CHARS x509]} {[LIT_CHARS -req]} {[LIT_CHARS -in]} {[LIT_CHARS client2_request.pem]} {[LIT_CHARS -out]} {[LIT_CHARS client2.pem]} {[LIT_CHARS -set_serial]} {[LIT_CHARS 3]} {[LIT_CHARS -CA]} {[LIT_CHARS client_authority.pem]} {[LIT_CHARS -CAkey]} {[LIT_CHARS client_authority_key.pem]} {[LIT_CHARS -passin]} {[VarSub password]} {[LIT_CHARS -extfile]} {[LIT_CHARS ../sample_certificate_v3_extensions]} {[LIT_CHARS -extensions]} {[LIT_CHARS client_certificate]} {[LIT_CHARS -days]} {[LIT_CHARS 3650]}  )
  (Com {[LIT_CHARS rm]} {[LIT_CHARS root_authority_key.pem]}  )
  (Com {[LIT_CHARS rm]} {[LIT_CHARS intermediate_authority.pem]}  )
  (Com {[LIT_CHARS rm]} {[LIT_CHARS client_authority_key.pem]}  )
  (= scope=<EAssignScope.GLOBAL 1> flags=0 words=[] bindings=[('CERTS', {[LIT_CHARS ../certificates]})])
  (Com {[LIT_CHARS cat]} {[LIT_CHARS localhost.pem]} {[LIT_CHARS intermediate_authority.pem]} {[LIT_CHARS root_authority.pem]}
    <
    (FilenameRedirectNode filename={[VarSub CERTS] [LIT_CHARS /server_chain.pem]} <REDIR_GREAT ">"> 1),
    >
  )
  (Com {[LIT_CHARS cat]} {[LIT_CHARS intermediate_authority.pem]} {[LIT_CHARS root_authority.pem]} {[LIT_CHARS client_authority.pem]}
    <
    (FilenameRedirectNode filename={[VarSub CERTS] [LIT_CHARS /server_trusted.pem]} <REDIR_GREAT ">"> 1),
    >
  )
  (Com {[LIT_CHARS openssl]} {[LIT_CHARS pkcs8]} {[LIT_CHARS -in]} {[LIT_CHARS localhost_key.pem]} {[LIT_CHARS -out]} {[VarSub CERTS] [LIT_CHARS /server_key.pem]} {[LIT_CHARS -topk8]} {[LIT_CHARS -v1]} {[LIT_CHARS PBE-SHA1-RC4-128]} {[LIT_CHARS -passin]} {[VarSub password]} {[LIT_CHARS -passout]} {[VarSub password]}  )
  (Com {[LIT_CHARS openssl]} {[LIT_CHARS pkcs8]} {[LIT_CHARS -in]} {[LIT_CHARS client1_key.pem]} {[LIT_CHARS -out]} {[VarSub CERTS] [LIT_CHARS /client1_key.pem]} {[LIT_CHARS -topk8]} {[LIT_CHARS -v1]} {[LIT_CHARS PBE-SHA1-RC4-128]} {[LIT_CHARS -passin]} {[VarSub password]} {[LIT_CHARS -passout]} {[VarSub password]}  )
  (Com {[LIT_CHARS openssl]} {[LIT_CHARS pkcs8]} {[LIT_CHARS -in]} {[LIT_CHARS client2_key.pem]} {[LIT_CHARS -out]} {[VarSub CERTS] [LIT_CHARS /client2_key.pem]} {[LIT_CHARS -topk8]} {[LIT_CHARS -v1]} {[LIT_CHARS PBE-SHA1-RC4-128]} {[LIT_CHARS -passin]} {[VarSub password]} {[LIT_CHARS -passout]} {[VarSub password]}  )
  (Com {[LIT_CHARS cp]} {[LIT_CHARS root_authority.pem]} {[VarSub CERTS] [LIT_CHARS /trusted_certs.pem]}  )
  (Com {[LIT_CHARS cp]} {[LIT_CHARS client_authority.pem]} {[VarSub CERTS]}  )
  (Com {[LIT_CHARS cp]} {[LIT_CHARS client1.pem]} {[VarSub CERTS]}  )
  (Com {[LIT_CHARS cp]} {[LIT_CHARS client2.pem]} {[VarSub CERTS]}  )
  (Com {[LIT_CHARS cd]} {[LIT_CHARS ..]}  )
)