Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Tim Hudson <tjh@openssl.org>
Reviewed-by: Shane Lontis <shane.lontis@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/19510)
#ifndef OPENSSL_NO_DH
ADD_TEST(kem_invalid_keytype);
#endif
+ /*
+ * The FIPS provider doesn't have 3DES, so we skip this test if
+ * FIPS is available. It's not perfect because FIPS + default might be
+ * loaded but it's good enough.
+ */
#ifndef OPENSSL_NO_DES
- ADD_TEST(test_cipher_tdes_randkey);
+ if (!OSSL_PROVIDER_available(libctx, "fips"))
+ ADD_TEST(test_cipher_tdes_randkey);
#endif
return 1;
}