[FeeTinesAMady]

LibreSSL is doing the first part of that. When it's in a useable state, switch to that and leave OpenSSL in the past.

[Animats]

They're sure trying. Right now, they're struggling to turn off OpenSSL's "dynamic engine", which allows loading and unloading new crypto engines while OpenSSL is running. In case someone hot-plugs a USB crypto device, perhaps?

There stuff in there that 0.001% of users want. It creates a risk for everyone else.