From aed3125861d71c5b8fce4c801d81e8c28dcdfea8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Pablo=20Herranz=20Ram=C3=ADrez?= <pablo.herranz@suse.com>
Date: Fri, 29 Nov 2024 14:50:06 +0100
Subject: [PATCH] Added check for GNUtls in FIPS140 mode

---
 tests/test_fips.py | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/tests/test_fips.py b/tests/test_fips.py
index 656a3d94..c27ac7ee 100644
--- a/tests/test_fips.py
+++ b/tests/test_fips.py
@@ -195,6 +195,10 @@ def test_gnutls_binary(container_per_test: ContainerData) -> None:
         "mv fips-test-gnutls /bin/fips-test-gnutls"
     )
 
+    assert "NOT" not in container_per_test.connection.check_output(
+        "gnutls-cli --fips140-mode"
+    ), "Container library not in FIPS140 mode"
+
     expected_fips_gnutls_digests = {
         "sha1": "c87d25a09584c040f3bfc53b570199591deb10ba648a6a6ffffdaa0badb23b8baf90b6168dd16b3a",
         "sha224": "54655eae3d97147de34564572231c34d6d0917dd7852b5b93647fb4fe53ee97e5e0a2a4d359b5b461409dc44d9315afbc3b7d6bc5cd598e6",