38
datefudge "2006-09-23" $CERTTOOL --verify-chain --infile $srcdir/pkcs1-pad-ok.pem | tee out1
39
datefudge "2006-09-23" $CERTTOOL --verify-chain --infile $srcdir/pkcs1-pad-broken.pem | tee out2
38
datefudge "2006-09-23" $CERTTOOL --verify-chain --infile $srcdir/pkcs1-pad-ok.pem | tee out1 >/dev/null 2>&1
39
datefudge "2006-09-23" $CERTTOOL --verify-chain --infile $srcdir/pkcs1-pad-broken.pem | tee out2 >/dev/null 2>&1
41
41
out1oks=`grep 'Verified.' out1 | wc -l | tr -d " "`
42
42
out2oks=`grep 'Verified.' out2 | wc -l | tr -d " "`
43
43
out1fails=`grep 'Not verified.' out1 | wc -l | tr -d " "`
44
44
out2fails=`grep 'Not verified.' out2 | wc -l | tr -d " "`
48
echo out1 oks $out1oks fails $out1fails out2 oks $out2oks fails $out2fails
50
46
if test "$out1oks$out2oks$out1fails$out2fails" != "$EXPECT1"; then
47
echo out1 oks $out1oks fails $out1fails out2 oks $out2oks fails $out2fails
51
48
echo expected $EXPECT1
52
49
echo "PKCS1-PAD1 FAIL"
56
55
echo "PKCS1-PAD1 OK"
58
57
# Test 2, Bleichenbacher's Crypto 06 rump session
62
datefudge "2006-09-23" $CERTTOOL --verify-chain --infile $srcdir/pkcs1-pad-ok2.pem | tee out1
63
datefudge "2006-09-23" $CERTTOOL --verify-chain --infile $srcdir/pkcs1-pad-broken2.pem | tee out2
61
datefudge "2006-09-23" $CERTTOOL --verify-chain --infile $srcdir/pkcs1-pad-ok2.pem | tee out1 >/dev/null 2>&1
62
datefudge "2006-09-23" $CERTTOOL --verify-chain --infile $srcdir/pkcs1-pad-broken2.pem | tee out2 >/dev/null 2>&1
65
64
out1oks=`grep 'Verified.' out1 | wc -l | tr -d " "`
66
65
out2oks=`grep 'Verified.' out2 | wc -l | tr -d " "`
67
66
out1fails=`grep 'Not verified.' out1 | wc -l | tr -d " "`
68
67
out2fails=`grep 'Not verified.' out2 | wc -l | tr -d " "`
72
echo out1 oks $out1oks fails $out1fails out2 oks $out2oks fails $out2fails
74
69
if test "$out1oks$out2oks$out1fails$out2fails" != "$EXPECT2"; then
70
echo out1 oks $out1oks fails $out1fails out2 oks $out2oks fails $out2fails
75
71
echo expected $EXPECT2
76
72
echo "PKCS1-PAD2 FAIL"
80
78
echo "PKCS1-PAD2 OK"
82
80
# Test 3, forged Starfield certificate,
88
datefudge "2006-09-23" $CERTTOOL --verify-chain --infile $srcdir/pkcs1-pad-broken3.pem | tee out1
86
datefudge "2006-09-23" $CERTTOOL --verify-chain --infile $srcdir/pkcs1-pad-broken3.pem | tee out1 >/dev/null 2>&1
90
88
out1oks=`grep 'Verified.' out1 | wc -l | tr -d " "`
91
89
out1fails=`grep 'Not verified.' out1 | wc -l | tr -d " "`
95
echo out1 oks $out1oks fails $out1fails
97
91
if test "$out1oks$out1fails" != "$EXPECT3"; then
92
echo out1 oks $out1oks fails $out1fails
98
93
echo expected $EXPECT3
99
94
echo "PKCS1-PAD3 FAIL"
103
100
echo "PKCS1-PAD3 OK"