> A small note about the 'no-deprecated' configuration option: this is an option to simulate the far future when the deprecated stuff has been removed from the public eye. Deprecated openssl commands should not build with such a configuration. How can that work? If the deprecated command calls deprecated API's then you'll get build failures.