Loading...

Linking RHIVOS CVEs to...

Migration: Automation ...

Sync from "Extern...

XML

Word

Printable

Acceptance Criteria:

Hide

AC1) In all policies the mlkem768nistp256-sha256 and mlkem1024nistp384-sha384 key exchange algorithms are allowed.

AC2) In all policies except FIPS mlkem768x25519-sha256 key exchange algorithm is allowed.

Show
AC1) In all policies the mlkem768nistp256-sha256 and mlkem1024nistp384-sha384 key exchange algorithms are allowed. AC2) In all policies except FIPS mlkem768x25519-sha256 key exchange algorithm is allowed.
Preliminary Testing:
Pass
Errata Link:
https://errata.engineering.redhat.com/advisory/156679
Gating Tests:

Enabled
Test Coverage:

Automated

Release Note Type:
Enhancement
Release Note Text:

Hide
Feature, enhancement: crypto-policies enables mlkem768nistp256-sha256 and mlkem1024nistp384-sha384 key exchange algorithms in FIPS mode for openssh
Reason: openssh gained support for using ML-KEM NIST curve hybrids in FIPS mode
Result: 10.2 hosts in FIPS mode with FIPS policy active should perform key exchange with mlkem768nistp256-sha256 or mlkem1024nistp384-sha384 should the other peer support and prefer them.

Show
Feature, enhancement: crypto-policies enables mlkem768nistp256-sha256 and mlkem1024nistp384-sha384 key exchange algorithms in FIPS mode for openssh Reason: openssh gained support for using ML-KEM NIST curve hybrids in FIPS mode Result: 10.2 hosts in FIPS mode with FIPS policy active should perform key exchange with mlkem768nistp256-sha256 or mlkem1024nistp384-sha384 should the other peer support and prefer them.
Release Note Status:
Proposed
ProdDocsReview-CCS:
Unspecified
ProdDocsReview-Dev:
Unspecified
ProdDocsReview-QE:
Unspecified

The following hybrid ML_KEMs should be allowed:

NIST curves + ML-KEM - FIPS/non-FIPS modes
ed25519 + ML-KEM - non-FIPS mode, FIPS mode when we have fips-provider-next (if distinguishable)

links to

RHBA-2025:156679 crypto-policies update