* don't use CRYPTO_LOCK stuff (they are sorted out by openssl, and no application intervention is required, just like boringSSL) * don't use OPENSSL_config * use provided API to access BIO member