René Meusel

Rebased after #4367 caused a conflict.

Appendix A.1 mentions the introduction of _HashSLH-DSA_ that describes an addtional **domain separated** signing mode when providing the actual message or a hash of the message, [similar to _HashML-DSA_](https://github.com/randombit/botan/pull/4270#issuecomment-2286178615). Also...

Rebased after #4367 caused conflicts.

Regarding CI: Here a patch that enables running your test in (some) CI configurations: https://github.com/reneme/botan/pull/6/commits/f22d6b894c821593eedf4641964b14d34c86be56 You might need to rebase to the latest `master` branch before this applies. Also note:...

@randombit Your call regarding merging before or after the 3.6.0 release. Given that this is entirely inside an optional module, there's probably little chance for general surprises here.

Perhaps related to [the previous work](https://github.com/randombit/botan/issues/4112) on rectifying the `tls_proxy` concurrency state? (also [here](https://github.com/randombit/botan/pull/4178))

Yes! We're on it in context of [the BSI Project 481](https://github.com/randombit/botan/issues/3108): * https://github.com/randombit/botan/pull/3893 * https://github.com/randombit/botan/pull/4270 * https://github.com/randombit/botan/pull/4291 Currently these open pull requests contain implementations of the IPD-versions but they'll be...

The mentioned algorithm implementations are now merged and slated for release in Botan 3.6.0 next week. The signature algorithms ML-DSA and SLH-DSA won't support the pre-hash mode and will lack...

That's certainly possible. If I recall correctly, the certstore tests are looking for more than one cert. so if it fails for just that one, you're probably right.

@solemnwarning could you rebase to master and see if the test succeeds on your platform now?