41 lines
1.6 KiB
Text
41 lines
1.6 KiB
Text
These scripts are used to run fipstest on a directory of CAVS vectors.
|
|
|
|
individual cipher scripts:
|
|
aesgcm.sh aes.sh dsa.sh ecdsa.sh hmac.sh ike.sh kas.sh
|
|
kbkdf.sh rng.sh rsa.sh sha.sh tdea.sh tls.sh
|
|
|
|
Each individual cipher script handles all the tests in a particular directory.
|
|
The scripts have 2 modes:
|
|
1) run [default] which generates the .rsp file from the .req file.
|
|
2) verify which verify the generated .req file, either from a pregenerated
|
|
.fax file, or by running the appropriate fipstest verify function. The latter
|
|
is used for output that's non-deterministic (like randomly generated keys, or
|
|
signatures with random elements in them like DSA).
|
|
|
|
The verify scripts return 0 on success and non-zero on failure.
|
|
|
|
The validate1.sh script is used by these individual cipher scripts to make
|
|
sure .rsp and .fax files are identical, sans some expected differences like
|
|
white space or comment differences. It returns 0 on success or non-zero on
|
|
failure.
|
|
|
|
When the scripts use fipstest to validate a .resp file, it uses grep to look
|
|
for failure cases. grep returns '1' if no failures are found and '1' if
|
|
failures or found. The scripts switches this back to 0 for success and 1 for
|
|
failure with the command 'test 1 = $?` which returns 0 if $? is 1 and 1 if $?
|
|
is 0.
|
|
|
|
To run and individual cipher test, just type:
|
|
./{script}.sh {path-to-cavs-root}
|
|
|
|
to verify with an individual cipher test, just type:
|
|
./{script}.sh {path-to-cavs-root} verify
|
|
|
|
You can run all the cipher scripts with the runtest.sh:
|
|
./runtest.sh {path-to-cavs-root}
|
|
|
|
And you can verify the result with:
|
|
./runtest.sh {path-to-cavs-root} verify
|
|
Or
|
|
./validate.sh {patch-to-cavs-root}
|
|
|