forked from pool/libgcrypt
62 lines
1.6 KiB
Bash
62 lines
1.6 KiB
Bash
|
#!/bin/bash
|
||
|
#
|
||
|
# This is the driver script around the actual FIPS testing
|
||
|
# Written by: Stephan Müller <sm@atsec.com>
|
||
|
# (c) atsec information security corporation
|
||
|
|
||
|
# The easiest way to perform the cipher compliance testing
|
||
|
# is the following:
|
||
|
#
|
||
|
# 1. patch/compile/copy the openssl binary with the patch if necessary
|
||
|
# (old versions hang when running the MC test if unpatched)
|
||
|
#
|
||
|
# 2. unpack the test vector ZIP file to a local dir
|
||
|
#
|
||
|
# 3. set PATH in a way that cavs_driver.pl is found
|
||
|
#
|
||
|
# 4. go to the local dir where you unzipped the test vector archive and execute
|
||
|
# $0
|
||
|
#
|
||
|
# 5. send atsec the prepared CAVS_results-*.zip archive found in the same dir
|
||
|
|
||
|
DATE=$(date +%Y%m%d)
|
||
|
ARCH=$(uname -m)
|
||
|
PATH=$PATH:$(pwd)
|
||
|
|
||
|
# test interface to be used
|
||
|
# can be overridden by passing an argument to this script
|
||
|
# possible values are:
|
||
|
# openssl OpenSSL (default)
|
||
|
# libgcrypt Libgcrypt
|
||
|
# cryptoapi Kernel
|
||
|
INTERFACE="libgcrypt"
|
||
|
|
||
|
if [ "$1" == "-I" -a -n "$2" ]; then
|
||
|
INTERFACE="$2"
|
||
|
fi
|
||
|
|
||
|
for i in $(find ./ -name "*.req");
|
||
|
do
|
||
|
(
|
||
|
cd $(dirname $i) || exit 1
|
||
|
|
||
|
# We have to see whether we check on DSA based on path name
|
||
|
echo $(dirname $i) | if [ ! $(grep -v DSA) ]; then
|
||
|
/usr/lib/libgcrypt/cavs_driver.pl -I $INTERFACE -D $(basename $i)
|
||
|
else
|
||
|
/usr/lib/libgcrypt/cavs_driver.pl -I $INTERFACE $(basename $i)
|
||
|
fi
|
||
|
|
||
|
|
||
|
# for CAVS, we have path/req/<testvectors>
|
||
|
# and want to have the responses in path/resp/*.rsp
|
||
|
if [ $(basename $(dirname $i)) = "req" ]; then
|
||
|
mkdir ../resp > /dev/null 2>&1
|
||
|
outfile="$(basename $i .req).rsp"
|
||
|
mv "$outfile" ../resp/
|
||
|
fi
|
||
|
) &
|
||
|
done
|
||
|
wait
|
||
|
zip -r CAVS_results-$ARCH-$DATE.zip $(find ./ -name "*.rsp")
|