As a user of C++ gRPC standard library, I have hard time to understand why this pkcs#11 access to TLS credentials is not provided as part of the standard gRPC API. This way the user will not have to worry about re building the library.
Therefore, regarding which openssl version to use, if it is packaged inside the grpc library, then it will just depend on which version of grpc lib is being used.
So, moving to a new openssl version would just require the user to upgrade their grpc library to a new grpc version.
Unless the community position is to let the users themselves build the grpc lib with whatever opssl version they prefer.
If someone can shed some light on this, it would be greatly appreciated.