Add ignore list entries for crypto tests that are not executed

For each ignore list entry, link to a GitHub issue for its resolution. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>
2025-03-21 19:20:56 +00:00 · 2024-09-17 18:33:29 +02:00 · 2024-09-17 18:33:29 +02:00 · 1a17627a33
commit 1a17627a33
parent 419a5841a4
1 changed files with 25 additions and 0 deletions
--- a/tests/scripts/analyze_outcomes.py
+++ b/tests/scripts/analyze_outcomes.py
@ -92,6 +92,19 @@ class CoverageTask(outcome_analysis.CoverageTask):
            'Opaque key for server authentication: invalid key: decrypt with ECC key, no async',
            'Opaque key for server authentication: invalid key: ecdh with RSA key, no async',
        ],
+        'test_suite_pkcs12': [
+            # Probably a missing configuration in the CI.
+            # https://github.com/Mbed-TLS/mbedtls/issues/9580
+            'PBE Decrypt, (Invalid padding & PKCS7 padding disabled)',
+            'PBE Encrypt, pad = 8 (PKCS7 padding disabled)',
+        ],
+        'test_suite_pkcs5': [
+            # Probably a missing configuration in the CI.
+            # https://github.com/Mbed-TLS/mbedtls/issues/9580
+            'PBES2 Decrypt (Invalid padding & PKCS7 padding disabled)',
+            'PBES2 Encrypt, pad=6 (PKCS7 padding disabled)',
+            'PBES2 Encrypt, pad=8 (PKCS7 padding disabled)',
+        ],
        'test_suite_psa_crypto_generate_key.generated': [
            # Ignore mechanisms that are not implemented, except
            # for public keys for which we always test that
@ -102,6 +115,18 @@ class CoverageTask(outcome_analysis.CoverageTask):
                          if not mech.startswith('ECC_PUB')),
                         exclude=r'ECC_PUB'),
        ],
+        'test_suite_psa_crypto_metadata': [
+            # Algorithms declared but not supported.
+            # https://github.com/Mbed-TLS/mbedtls/issues/9579
+            'Asymmetric signature: Ed25519ph',
+            'Asymmetric signature: Ed448ph',
+            'Asymmetric signature: pure EdDSA',
+            'Cipher: XTS',
+            'MAC: CBC_MAC-3DES',
+            'MAC: CBC_MAC-AES-128',
+            'MAC: CBC_MAC-AES-192',
+            'MAC: CBC_MAC-AES-256',
+        ],
        'test_suite_psa_crypto_not_supported.generated': [
            # It is a bug that not-supported test cases aren't getting
            # run for never-implemented key types.