test: omit failing test when using a FIPS provider that supports eddsa_no_verify_digested

Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: Shane Lontis <shane.lontis@oracle.com>
(Merged from https://github.com/openssl/openssl/pull/25032)

diff --git a/test/cmp_protect_test.c b/test/cmp_protect_test.c
index 89f342458ec4e58d7b7effba4102ec0104d85e3a..a1ec672d7b76f3ddfc19847f9b82b435c93be12a 100644 (file)
--- a/test/cmp_protect_test.c
+++ b/test/cmp_protect_test.c
@@ -162,6 +162,14 @@ static int test_cmp_calc_protection_pkey(void)
 static int test_cmp_calc_protection_pkey_Ed(void)
 {
     SETUP_TEST_FIXTURE(CMP_PROTECT_TEST_FIXTURE, set_up);
+
+    /* eddsa_no_verify_digested prevents this test working */
+    if (fips_provider_version_match(libctx, ">=3.4.0")) {
+        tear_down(fixture);
+        fixture = NULL;
+        return TEST_skip("incompatible FIPS provider version");
+    }
+
     fixture->pubkey = prot_Ed_key;
     if (!TEST_true(OSSL_CMP_CTX_set1_pkey(fixture->cmp_ctx, prot_Ed_key))
         || !TEST_ptr(fixture->msg = load_pkimsg(genm_prot_Ed_f, libctx))) {