These scripts are used to run fipstest on a directory of CAVS vectors. individual cipher scripts: aesgcm.sh aes.sh dsa.sh ecdsa.sh hmac.sh ike.sh kas.sh kbkdf.sh rng.sh rsa.sh sha.sh tdea.sh tls.sh Each individual cipher script handles all the tests in a particular directory. The scripts have 2 modes: 1) run [default] which generates the .rsp file from the .req file. 2) verify which verify the generated .req file, either from a pregenerated .fax file, or by running the appropriate fipstest verify function. The latter is used for output that's non-deterministic (like randomly generated keys, or signatures with random elements in them like DSA). The verify scripts return 0 on success and non-zero on failure. The validate1.sh script is used by these individual cipher scripts to make sure .rsp and .fax files are identical, sans some expected differences like white space or comment differences. It returns 0 on success or non-zero on failure. When the scripts use fipstest to validate a .resp file, it uses grep to look for failure cases. grep returns '1' if no failures are found and '1' if failures or found. The scripts switches this back to 0 for success and 1 for failure with the command 'test 1 = $?` which returns 0 if $? is 1 and 1 if $? is 0. To run and individual cipher test, just type: ./{script}.sh {path-to-cavs-root} to verify with an individual cipher test, just type: ./{script}.sh {path-to-cavs-root} verify You can run all the cipher scripts with the runtest.sh: ./runtest.sh {path-to-cavs-root} And you can verify the result with: ./runtest.sh {path-to-cavs-root} verify Or ./validate.sh {patch-to-cavs-root}