Downgrade to OpenSSL 1.1.1q and 3.0.5. With help/ok sthen

The OpenSSL 1.1.1r and 3.0.6 releases have been withdrawn. Apparently there is a regression that isn't security relevant but bad enough for them to recommend to downgrade. If failure to encrypt is LOW severity, no-one knows how bad things actually are... What a mess. https://marc.info/?l=openssl-announce&m=166558438331847&w=2
2022-10-12 16:14:01 +00:00 · 2022-10-12 16:14:01 +00:00 · bde409afec
commit bde409afec
parent 2ae49547d9
5 changed files with 10 additions and 15 deletions
--- a/security/openssl/1.1/Makefile
+++ b/security/openssl/1.1/Makefile
@ -1,7 +1,8 @@
 # bump security/sslscan if updating (static linked)
 PORTROACH=	limit:^1\.1\.[0-9][a-z] skipb:0 skipv:1.1.1
-V=		1.1.1r
-PKGSPEC=	openssl->=1.1.0,<1.2
+V=		1.1.1q
+PKGSPEC=	openssl->=1.1.0v0,<1.2v0
+EPOCH=		0

 SHLIBVER=	11.6
 SHARED_LIBS=	crypto ${SHLIBVER} \
--- a/security/openssl/1.1/distinfo
+++ b/security/openssl/1.1/distinfo
@ -1,2 +1,2 @@
-SHA256 (openssl-1.1.1r.tar.gz) = 44k1KuPVrk04WXv4pU8dy2+zyLUPT+WKlLsb9/hdgqA=
-SIZE (openssl-1.1.1r.tar.gz) = 9868506
+SHA256 (openssl-1.1.1q.tar.gz) = 15Oc5hQCnN/wtsIPDi5XAxWKSJpyslB7i9Ub+Mj9EMo=
+SIZE (openssl-1.1.1q.tar.gz) = 9864061
--- a/security/openssl/3.0/Makefile
+++ b/security/openssl/3.0/Makefile
@ -1,9 +1,10 @@
 # bump mail/postfix/stable and mail/postfix/snapshots if updating
 # (static linked)
 PORTROACH=	limit:^3
-V=		3.0.6
+V=		3.0.5
 PKGNAME=	openssl-${V}
-PKGSPEC=	openssl->=3,<3.1
+PKGSPEC=	openssl->=3v0,<3.1v0
+EPOCH=		0

 SHLIBVER=	12.2
 SHARED_LIBS=	crypto ${SHLIBVER} \
--- a/security/openssl/3.0/distinfo
+++ b/security/openssl/3.0/distinfo
@ -1,2 +1,2 @@
-SHA256 (openssl-3.0.6.tar.gz) = 5KEKKYaUXj8aHy69aKx4BEmhdzuWtqF0/fZQ1ryWEfE=
-SIZE (openssl-3.0.6.tar.gz) = 15101953
+SHA256 (openssl-3.0.5.tar.gz) = qn2Nm+9xrWUlxVuhHl9Dl4ic5Jwsk0nc6m0+TwsCSno=
+SIZE (openssl-3.0.5.tar.gz) = 15074407
--- a/security/openssl/3.0/pkg/PLIST
+++ b/security/openssl/3.0/pkg/PLIST
@ -156,7 +156,6 @@ ${MAN_PREFIX}/man1/asn1parse.1
 ${MAN_PREFIX}/man1/c_rehash.1
 ${MAN_PREFIX}/man1/ca.1
 ${MAN_PREFIX}/man1/ciphers.1
-${MAN_PREFIX}/man1/cmp.1
 ${MAN_PREFIX}/man1/cms.1
 ${MAN_PREFIX}/man1/crl.1
 ${MAN_PREFIX}/man1/crl2pkcs7.1
@ -1797,8 +1796,6 @@ ${MAN_PREFIX}/man3/EVP_OpenInit.3
 ${MAN_PREFIX}/man3/EVP_OpenUpdate.3
 ${MAN_PREFIX}/man3/EVP_PBE_CipherInit.3
 ${MAN_PREFIX}/man3/EVP_PBE_CipherInit_ex.3
-${MAN_PREFIX}/man3/EVP_PBE_alg_add.3
-${MAN_PREFIX}/man3/EVP_PBE_alg_add_type.3
 ${MAN_PREFIX}/man3/EVP_PBE_find.3
 ${MAN_PREFIX}/man3/EVP_PBE_find_ex.3
 ${MAN_PREFIX}/man3/EVP_PBE_scrypt.3
@ -2626,9 +2623,6 @@ ${MAN_PREFIX}/man3/OPENSSL_fork_child.3
 ${MAN_PREFIX}/man3/OPENSSL_fork_parent.3
 ${MAN_PREFIX}/man3/OPENSSL_fork_prepare.3
 ${MAN_PREFIX}/man3/OPENSSL_free.3
-${MAN_PREFIX}/man3/OPENSSL_gmtime.3
-${MAN_PREFIX}/man3/OPENSSL_gmtime_adj.3
-${MAN_PREFIX}/man3/OPENSSL_gmtime_diff.3
 ${MAN_PREFIX}/man3/OPENSSL_hexchar2int.3
 ${MAN_PREFIX}/man3/OPENSSL_hexstr2buf.3
 ${MAN_PREFIX}/man3/OPENSSL_hexstr2buf_ex.3
@ -4955,7 +4949,6 @@ ${MAN_PREFIX}/man3/X509_get_subject_name.3
 ${MAN_PREFIX}/man3/X509_get_version.3
 ${MAN_PREFIX}/man3/X509_getm_notAfter.3
 ${MAN_PREFIX}/man3/X509_getm_notBefore.3
-${MAN_PREFIX}/man3/X509_gmtime_adj.3
 ${MAN_PREFIX}/man3/X509_http_nbio.3
 ${MAN_PREFIX}/man3/X509_issuer_and_serial_cmp.3
 ${MAN_PREFIX}/man3/X509_issuer_name_cmp.3