From 88988bb06ccadb1c5486d1e61d9aa6c75e36a404 Mon Sep 17 00:00:00 2001
From: Andrew Hopkins <andhop@amazon.com>
Date: Wed, 30 Aug 2023 16:33:13 -0700
Subject: [PATCH] REGTESTS: ssl: skip ssl_dh test with AWS-LC

skip ssl_dh test when HAProxy is built with AWS-LC which does not support FFDH ciphersuites.
---
 reg-tests/ssl/ssl_dh.vtc | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/reg-tests/ssl/ssl_dh.vtc b/reg-tests/ssl/ssl_dh.vtc
index 9553f371d..36e72b8ff 100644
--- a/reg-tests/ssl/ssl_dh.vtc
+++ b/reg-tests/ssl/ssl_dh.vtc
@@ -18,7 +18,8 @@
 # stop using deprecated APIs.
 
 varnishtest "Test the DH related SSL options"
-feature cmd "$HAPROXY_PROGRAM -cc 'feature(OPENSSL)'"
+# AWS-LC does not support any FFDH ciphersuites
+feature cmd "$HAPROXY_PROGRAM -cc 'feature(OPENSSL) && !ssllib_name_startswith(AWS-LC)'"
 feature cmd "command -v openssl && command -v grep && command -v socat"
 feature ignore_unknown_macro