Merge pull request #331 from Jakuje/fix-ci

Fix CI pipelines

Author: wiktor-k

.github/workflows/ci.yml

@@ -117,8 +117,11 @@ jobs:
       - name: Install SoftHSM
         run: |
           if [ "${{ matrix.target }}" = "i686-unknown-linux-gnu" ]; then
+            # the default image is bloated so remove set of needless packages that we would have to update
+            sudo apt-get purge -yqq libmono* moby* mono* php* libgdiplus libpcre2-posix3 libzip4 firefox snapd mysql*
             sudo dpkg --add-architecture i386
             sudo apt-get update -y -qq
+            sudo apt-get upgrade -y -qq
             sudo apt-get install -y -qq gcc-multilib:i386 libsofthsm2:i386 gcc:i386
           else
             sudo apt-get update -y -qq

cryptoki/tests/basic.rs

@@ -154,12 +154,16 @@ fn sign_verify_eddsa_with_ed25519_schemes() -> TestResult {
 
     let data = [0xFF, 0x55, 0xDD];
 
-    let schemes = [
+    let mut schemes = vec![
         EddsaSignatureScheme::Ed25519,
-        EddsaSignatureScheme::Ed25519ctx(b"context"),
         EddsaSignatureScheme::Ed25519ph(&[]),
         EddsaSignatureScheme::Ed25519ph(b"context"),
     ];
+    if !is_fips(&session) {
+        // The Ed25519Ctx variant is not FIPS approved
+        // https://github.com/openssl/openssl/issues/27502
+        schemes.push(EddsaSignatureScheme::Ed25519ctx(b"context"))
+    }
 
     for scheme in schemes {
         let params = EddsaParams::new(scheme);