#unpopular opinion: I think we should get rid of monolithic crypto (OpenSSL) and use modular crypto. It's up to the user to provide what they want, not the lib.

I want things like register_tls_exchange("ECDHE-ECDSA", ecdhe_ecdsa_adapter); and stuff. I want trivial wrapper libs that simply combine all those smaller libs and make it look monolithic but each smaller lib can be developed independently. I want those pseudo-monolithic libs to support explicitly disabling some forms of crypto at compile-time.