AC1) there's a new crypto-policies-pq-preview subpackage AC2) crypto-policies-pq-preview provides a TEST-PQ subpolicy and nothing else AC3) crypto-policies-pq-preview depends on liboqs and oqsprovider AC4) TEST-PQ can be successfully applied onto all base policies AC5) Applying produces warnings about PQ algorithms being experimental AC6) Applying TEST-PQ generates policy changes only for backends supporting PQ (openssl, nss, gnutls and openssh) AC7) crypto-policies-pq-preview package description (and release notes) states that TEST-PQ is a technology preview AC8) (Optional) Package maintainers of of backends supporting PQ signed-off policy generated by DEFAULT:TEST-PQ (openssl, nss, gnutls and openssh) AC9) (optional) There is a functional test for each backend supporting PQ testing at least the X25519MLKEM768 and SecP256r1MLKEM768 hybrid key agreement schemes (openssl now, nss and gnutls later)

.System-wide post-quantum cryptography is available through `crypto-policies-pq-preview` as a Technology Preview The `TEST-PQ` subpolicy contained in the new `crypto-policies-pq-preview` package provides system-wide post-quantum cryptography (PQC) as a Technology Preview. You can enable PQC by switching to the `TEST-PQ` subpolicy and restarting the system, for example: ---- # update-crypto-policies --set DEFAULT:TEST-PQ # reboot ---- Note that all PQC algorithms in RHEL 10 are provided as a Technology Preview feature. The package and system-wide cryptographic policy name are subject to change when post-quantum cryptography exits the Technology Preview state. See the link: https://www.redhat.com/en/blog/post-quantum-cryptography-red-hat-enterprise-linux-10 [Post-quantum cryptography in Red Hat Enterprise Linux 10] article (Red Hat Blog) for more information.