Wikipedia at https://en.wikipedia.org/wiki/OpenSSL#Licensing claims the OpenSSL license change to Apache 2.0 would be complete, but the website of openssl.org does not reflect this. Situation is unclear. If the license change was complete, we could switch back to using OpenSSL in Debian.
