diff options
author | Dr. Stephen Henson <steve@openssl.org> | 2011-11-02 00:57:22 +0000 |
---|---|---|
committer | Dr. Stephen Henson <steve@openssl.org> | 2011-11-02 00:57:22 +0000 |
commit | 3ec9dceb15bfe2f45215e459454211fdc7a20c29 (patch) | |
tree | f64255d894ab0451d9c7ad03bbd64ec5951eb5fc /test | |
parent | 92064785ec89b0c6c202b2a1356b18182ba750fa (diff) | |
download | openssl-3ec9dceb15bfe2f45215e459454211fdc7a20c29.zip openssl-3ec9dceb15bfe2f45215e459454211fdc7a20c29.tar.gz openssl-3ec9dceb15bfe2f45215e459454211fdc7a20c29.tar.bz2 |
Add fips_algvs utility (from FIPS 2.0 stable branch).
Diffstat (limited to 'test')
-rw-r--r-- | test/Makefile | 10 | ||||
-rw-r--r-- | test/fips_algvs.c | 312 |
2 files changed, 320 insertions, 2 deletions
diff --git a/test/Makefile b/test/Makefile index 2577d24..2fcc78d 100644 --- a/test/Makefile +++ b/test/Makefile @@ -81,6 +81,7 @@ FIPS_ECDHVS= fips_ecdhvs FIPS_ECDSAVS= fips_ecdsavs FIPS_TEST_SUITE=fips_test_suite FIPS_CMACTEST= fips_cmactest +FIPS_ALGVS= fips_algvs TESTS= alltests @@ -119,7 +120,7 @@ OBJ= $(BNTEST).o $(ECTEST).o $(ECDSATEST).o $(ECDHTEST).o $(IDEATEST).o \ $(FIPS_RSASTEST).o $(FIPS_RSAGTEST).o $(FIPS_GCMTEST).o \ $(FIPS_DSSVS).o $(FIPS_DSATEST).o $(FIPS_RNGVS).o $(FIPS_DRBGVS).o \ $(FIPS_TEST_SUITE).o $(FIPS_DHVS).o $(FIPS_ECDSAVS).o \ - $(FIPS_ECDHVS).o $(FIPS_CMACTEST).o \ + $(FIPS_ECDHVS).o $(FIPS_CMACTEST).o $(FIPS_ALGVS).o \ $(EVPTEST).o $(IGETEST).o $(JPAKETEST).o SRC= $(BNTEST).c $(ECTEST).c $(ECDSATEST).c $(ECDHTEST).c $(IDEATEST).c \ $(MD2TEST).c $(MD4TEST).c $(MD5TEST).c \ @@ -133,7 +134,7 @@ SRC= $(BNTEST).c $(ECTEST).c $(ECDSATEST).c $(ECDHTEST).c $(IDEATEST).c \ $(FIPS_RSASTEST).c $(FIPS_RSAGTEST).c $(FIPS_GCMTEST).c \ $(FIPS_DSSVS).c $(FIPS_DSATEST).c $(FIPS_RNGVS).c $(FIPS_DRBGVS).c \ $(FIPS_TEST_SUITE).c $(FIPS_DHVS).c $(FIPS_ECDSAVS).c \ - $(FIPS_ECDHVS).c $(FIPS_CMACTEST).c \ + $(FIPS_ECDHVS).c $(FIPS_CMACTEST).c $(FIPS_ALGVS).c \ $(EVPTEST).c $(IGETEST).c $(JPAKETEST).c EXHEADER= @@ -150,6 +151,8 @@ exe: $(EXE) $(FIPSEXE) dummytest$(EXE_EXT) fipsexe: $(FIPSEXE) +fipsalgvs: $(FIPS_ALGVS) + files: $(PERL) $(TOP)/util/files.pl Makefile >> $(TOP)/MINFO @@ -504,6 +507,9 @@ $(FIPS_TEST_SUITE)$(EXE_EXT): $(FIPS_TEST_SUITE).o $(DLIBCRYPTO) $(FIPS_CMACTEST)$(EXE_EXT): $(FIPS_CMACTEST).o $(DLIBCRYPTO) @target=$(FIPS_CMACTEST); $(FIPS_BUILD_CMD) +$(FIPS_ALGVS)$(EXE_EXT): $(FIPS_ALGVS).o $(DLIBCRYPTO) + @target=$(FIPS_ALGVS); $(FIPS_BUILD_CMD) + $(RMDTEST)$(EXE_EXT): $(RMDTEST).o $(DLIBCRYPTO) @target=$(RMDTEST); $(BUILD_CMD) diff --git a/test/fips_algvs.c b/test/fips_algvs.c new file mode 100644 index 0000000..a662d01 --- /dev/null +++ b/test/fips_algvs.c @@ -0,0 +1,312 @@ +/* test/fips_algvs.c */ +/* Written by Dr Stephen N Henson (steve@openssl.org) for the OpenSSL + * project 2011 + */ +/* ==================================================================== + * Copyright (c) 2011 The OpenSSL Project. All rights reserved. + * + * Redistribution and use in source and binary forms, with or without + * modification, are permitted provided that the following conditions + * are met: + * + * 1. Redistributions of source code must retain the above copyright + * notice, this list of conditions and the following disclaimer. + * + * 2. Redistributions in binary form must reproduce the above copyright + * notice, this list of conditions and the following disclaimer in + * the documentation and/or other materials provided with the + * distribution. + * + * 3. All advertising materials mentioning features or use of this + * software must display the following acknowledgment: + * "This product includes software developed by the OpenSSL Project + * for use in the OpenSSL Toolkit. (http://www.OpenSSL.org/)" + * + * 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to + * endorse or promote products derived from this software without + * prior written permission. For written permission, please contact + * licensing@OpenSSL.org. + * + * 5. Products derived from this software may not be called "OpenSSL" + * nor may "OpenSSL" appear in their names without prior written + * permission of the OpenSSL Project. + * + * 6. Redistributions of any form whatsoever must retain the following + * acknowledgment: + * "This product includes software developed by the OpenSSL Project + * for use in the OpenSSL Toolkit (http://www.OpenSSL.org/)" + * + * THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY + * EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE + * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR + * PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR + * ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, + * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT + * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; + * LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) + * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, + * STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) + * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED + * OF THE POSSIBILITY OF SUCH DAMAGE. + * ==================================================================== + * + * This product includes cryptographic software written by Eric Young + * (eay@cryptsoft.com). This product includes software written by Tim + * Hudson (tjh@cryptsoft.com). + * + */ + +#include <stdio.h> +#include <openssl/crypto.h> +#include <openssl/opensslconf.h> + +#ifndef OPENSSL_FIPS +#include <stdio.h> + +int main(int argc, char **argv) +{ + printf("No FIPS ALGVS support\n"); + return 0; +} +#else + +#define FIPS_ALGVS + +extern int fips_aesavs_main(int argc, char **argv); +extern int fips_cmactest_main(int argc, char **argv); +extern int fips_desmovs_main(int argc, char **argv); +extern int fips_dhvs_main(int argc, char **argv); +extern int fips_drbgvs_main(int argc,char **argv); +extern int fips_dssvs_main(int argc, char **argv); +extern int fips_ecdhvs_main(int argc, char **argv); +extern int fips_ecdsavs_main(int argc, char **argv); +extern int fips_gcmtest_main(int argc, char **argv); +extern int fips_hmactest_main(int argc, char **argv); +extern int fips_rngvs_main(int argc, char **argv); +extern int fips_rsagtest_main(int argc, char **argv); +extern int fips_rsastest_main(int argc, char **argv); +extern int fips_rsavtest_main(int argc, char **argv); +extern int fips_shatest_main(int argc, char **argv); +extern int fips_test_suite_main(int argc, char **argv); + +#include "fips_aesavs.c" +#include "fips_cmactest.c" +#include "fips_desmovs.c" +#include "fips_dhvs.c" +#include "fips_drbgvs.c" +#include "fips_dssvs.c" +#include "fips_ecdhvs.c" +#include "fips_ecdsavs.c" +#include "fips_gcmtest.c" +#include "fips_hmactest.c" +#include "fips_rngvs.c" +#include "fips_rsagtest.c" +#include "fips_rsastest.c" +#include "fips_rsavtest.c" +#include "fips_shatest.c" +#include "fips_test_suite.c" + +typedef struct + { + const char *name; + int (*func)(int argc, char **argv); + } ALGVS_FUNCTION; + +static ALGVS_FUNCTION algvs[] = { + {"fips_aesavs", fips_aesavs_main}, + {"fips_cmactest", fips_cmactest_main}, + {"fips_desmovs", fips_desmovs_main}, + {"fips_dhvs", fips_dhvs_main}, + {"fips_drbgvs", fips_drbgvs_main}, + {"fips_dssvs", fips_dssvs_main}, + {"fips_ecdhvs", fips_ecdhvs_main}, + {"fips_ecdsavs", fips_ecdsavs_main}, + {"fips_gcmtest", fips_gcmtest_main}, + {"fips_hmactest", fips_hmactest_main}, + {"fips_rngvs", fips_rngvs_main}, + {"fips_rsagtest", fips_rsagtest_main}, + {"fips_rsastest", fips_rsastest_main}, + {"fips_rsavtest", fips_rsavtest_main}, + {"fips_shatest", fips_shatest_main}, + {"fips_test_suite", fips_test_suite_main}, + {NULL, 0} + }; + +/* Argument parsing taken from apps/apps.c */ + +typedef struct args_st + { + char **data; + int count; + } ARGS; + +static int chopup_args(ARGS *arg, char *buf, int *argc, char **argv[]) + { + int num,i; + char *p; + + *argc=0; + *argv=NULL; + + i=0; + if (arg->count == 0) + { + arg->count=20; + arg->data=(char **)OPENSSL_malloc(sizeof(char *)*arg->count); + } + for (i=0; i<arg->count; i++) + arg->data[i]=NULL; + + num=0; + p=buf; + for (;;) + { + /* first scan over white space */ + if (!*p) break; + while (*p && ((*p == ' ') || (*p == '\t') || (*p == '\n'))) + p++; + if (!*p) break; + + /* The start of something good :-) */ + if (num >= arg->count) + { + fprintf(stderr, "Too many arguments!!\n"); + return 0; + } + arg->data[num++]=p; + + /* now look for the end of this */ + if ((*p == '\'') || (*p == '\"')) /* scan for closing quote */ + { + i= *(p++); + arg->data[num-1]++; /* jump over quote */ + while (*p && (*p != i)) + p++; + *p='\0'; + } + else + { + while (*p && ((*p != ' ') && + (*p != '\t') && (*p != '\n'))) + p++; + + if (*p == '\0') + p--; + else + *p='\0'; + } + p++; + } + *argc=num; + *argv=arg->data; + return(1); + } + +static int run_prg(int argc, char **argv) + { + ALGVS_FUNCTION *t; + const char *prg_name; + prg_name = strrchr(argv[0], '/'); + if (prg_name) + prg_name++; + else + prg_name = argv[0]; + for (t = algvs; t->name; t++) + { + if (!strcmp(prg_name, t->name)) + return t->func(argc, argv); + } + return -100; + } + +int main(int argc, char **argv) + { + char buf[1024]; + char **args = argv + 1; + const char *sname = "fipstests.sh"; + ARGS arg; + int xargc; + char **xargv; + int lineno = 0, badarg = 0; + int nerr = 0, quiet = 0, verbose = 0; + FILE *in = NULL; + if (*args && *args[0] != '-') + return run_prg(argc - 1, args); + while (!badarg && *args && *args[0] == '-') + { + if (!strcmp(*args, "-script")) + { + if (args[1]) + { + args++; + sname = *args; + } + else + badarg = 1; + } + else if (!strcmp(*args, "-quiet")) + quiet = 1; + else if (!strcmp(*args, "-verbose")) + verbose = 1; + else + badarg = 1; + args++; + } + + if (badarg) + { + fprintf(stderr, "Error processing arguments\n"); + return 1; + } + + in = fopen(sname, "r"); + if (!in) + { + fprintf(stderr, "Error opening script file \"%s\"\n", sname); + return 1; + } + + arg.data = NULL; + arg.count = 0; + + while (fgets(buf, sizeof(buf), in)) + { + lineno++; + if (!chopup_args(&arg, buf, &xargc, &xargv)) + fprintf(stderr, "Error processing line %d\n", lineno); + else + { + int rv; + if (!quiet) + { + int i; + int narg = verbose ? xargc : xargc - 2; + printf("Running command line:"); + for (i = 0; i < narg; i++) + printf(" %s", xargv[i]); + printf("\n"); + } + rv = run_prg(xargc, xargv); + if (FIPS_module_mode()) + FIPS_module_mode_set(0, NULL); + if (rv != 0) + nerr++; + if (rv == -100) + fprintf(stderr, "ERROR: Command not found\n"); + else if (rv != 0) + fprintf(stderr, "ERROR: returned %d\n", rv); + else if (verbose) + printf("\tCommand run successfully\n"); + } + } + + if (!quiet) + printf("Completed with %d errors\n", nerr); + + fclose(in); + if (nerr == 0) + return 0; + return 1; + } + +#endif |