Add ignore list for restartable ECDH in TLS TLS only supports actual restartable ECDH with the legacy code that's going away, not with the MBEDTLS_USE_PSA_CRYPTO code that's becoming the only variant. This leaves a few test cases that validate restartable ECDH in TLS as desirable, but not currently able to pass. Signed-off-by: Gilles Peskine <Gilles.Peskine@arm.com>

commit: 24b03d8b72ba47b2a53635baf64554661a4d83f1 [log] [tgz]
author: Gilles Peskine <Gilles.Peskine@arm.com> Fri Oct 04 16:22:24 2024 +0200
committer: Gilles Peskine <Gilles.Peskine@arm.com> Thu Oct 10 17:26:11 2024 +0200
tree: 7d940be18dc8868603d672f7f97098f6427574bb
parent: 2fd25bb2a589053cfb5c5db91bd1f38b960baca9 [diff] [blame]
diff --git a/tests/scripts/analyze_outcomes.py b/tests/scripts/analyze_outcomes.py
index 75dc41d..0962cfe 100755
--- a/tests/scripts/analyze_outcomes.py
+++ b/tests/scripts/analyze_outcomes.py

@@ -85,6 +85,9 @@
             # We don't run ssl-opt.sh with Valgrind on the CI because
             # it's extremely slow. We don't intend to change this.
             'DTLS fragmenting: proxy MTU: auto-reduction (with valgrind)',
+            # TLS doesn't use restartable ECDH yet.
+            # https://github.com/Mbed-TLS/mbedtls/issues/7294
+            re.compile(r'EC restart:.*no USE_PSA.*'),
             # It seems that we don't run `ssl-opt.sh` with
             # `MBEDTLS_USE_PSA_CRYPTO` enabled but `MBEDTLS_SSL_ASYNC_PRIVATE`
             # disabled.
commit	24b03d8b72ba47b2a53635baf64554661a4d83f1	[log] [tgz]
author	Gilles Peskine <Gilles.Peskine@arm.com>	Fri Oct 04 16:22:24 2024 +0200
committer	Gilles Peskine <Gilles.Peskine@arm.com>	Thu Oct 10 17:26:11 2024 +0200
tree	7d940be18dc8868603d672f7f97098f6427574bb
parent	2fd25bb2a589053cfb5c5db91bd1f38b960baca9 [diff] [blame]