OpenSSL algorithms configuration granularity - design

There is a request to improve OpenSSL configuration granularity, mostly in X.509 part.
It was raised during the part of OpenSSL Distro community meeting around FOSDEM as https://github.com/openssl/openssl/issues/29869 and I've proposed a draft design in https://github.com/openssl/openssl/issues/30085

Any feedback is welcome