Remove conditional FIPS dependence for 3DES

Reviewed-by: Tomas Mraz <tomas@openssl.org> Reviewed-by: Tim Hudson <tjh@openssl.org> Reviewed-by: Shane Lontis <shane.lontis@oracle.com> (Merged from https://github.com/openssl/openssl/pull/19510)
2025-02-23 14:42:15 +08:00 · 2022-09-22 13:44:35 +10:00 · 2022-09-22 13:44:35 +10:00 · 464c1011b0
commit 464c1011b0
parent c511953a08
1 changed files with 7 additions and 1 deletions
--- a/test/evp_libctx_test.c
+++ b/test/evp_libctx_test.c
@ -745,8 +745,14 @@ int setup_tests(void)
 #ifndef OPENSSL_NO_DH
    ADD_TEST(kem_invalid_keytype);
 #endif
+    /*
+     * The FIPS provider doesn't have 3DES, so we skip this test if
+     * FIPS is available.  It's not perfect because FIPS + default might be
+     * loaded but it's good enough.
+     */
 #ifndef OPENSSL_NO_DES
-    ADD_TEST(test_cipher_tdes_randkey);
+    if (!OSSL_PROVIDER_available(libctx, "fips"))
+        ADD_TEST(test_cipher_tdes_randkey);
 #endif
    return 1;
 }