Crypto overhaul

[Wall, Stephen]

> At least as about its first year and a half, LibreSSL had a markedly
> better track record than OpenSSL (zero high-severity CVEs vs 5 from
> OpenSSL, about half as many mid- and low-security CVEs).

Are any of these relevant to the crypto module?  Or are they all only applicable to the SSL protocol?

As I understand the discussion so far, the goal is to unify all the disparate crypto pieces in the base system.  That could certainly be done using OpenSSLs libcrypto, and let users select their SSL provider from the ports tree.

-spw