Dmitry Belyavskiy

Can anyone please give a clue how can it be implemented? I think the preferred way is to try fetching the digests from the same provider we have the EVP_KEYMGMT...

I think the digests are fetched earlier...

Yes, this opens a way forward

@slontis Yes - but but from the FIPS perspective this one is of the most interest

Sure. I have a small commit which, I think, should land upstream, but yes, I would like to have a broader discussion

@shahsb I'm not sure I understand what you mean. We can have several different fips providers, version check you propose is openssl-specific, and I'm not sure how we get the...

I think we are on the safe side now: if the fetching properties require fips=yes, the ECDH part would be fetched with it. Otherwise it doesn't matter

Or fips can be stripped explicitly, as it is done in the current version of the code. I will try to update the PR tomorrow What I don't understand (and...

I processed @t-j-h review and hopefully didn't miss anything What are the next steps? While we had OTC, it would be a subject to vote, not sure what is the...

After some more investigation what looks reasonable to me: - Set a "fips=yes" for hybrids in default provider - fallback to fetching the ML-KEM with stripped fips property if fetching...