Apache 2.4.16 is released to fix CVEs. I have fixed or removed patches
to keep it building.
I have tested building against both OpenSSL and LibreSSL.
This is now upstream
This was removed as upstream has reworked this document to publish new defaults and recommendations. It especially reinforces that <TLS 1.2 support should be disabled by the end of 2016.
This was my mistake... thanks to Phabric for making this obvious