I just tested enabling the SLE11-Security-Module repo and installing the 'openssl1' package, and the openssl1 hashes were NOT automatically created. The %post/%postun scripts of the openssl-certs package will generate the hashes if openssl1 is already present, but there's no trigger to do this upon installation of openssl1. (Doing a force reinstall of openssl-certs does generate both styles of hashes.) Because of this, just having nodejs depend on openssl1 won't directly solve the issue, and creates new ones -- how do we tell users to enable the SLE11-Security-Module, let alone reinstall openssl-certs? If someone just searches OBS for nodejs and then attempts to install the package from d:l:nodejs, it will fail with missing deps of openssl1. This would be a reasonable solution, if not for those issues...