Upgrade OpenSSL 1.0.2 > 1.1.1

OpenSSL 1.1.1 will conflict with *SSL from ports but not the Base one, which is the default.

IIRC the syntax would be something like www_nginx-devel_DEFAULT_VERSIONS+=ssl=openssl111.

I think I saw sidetone using per port configurations in the past.

Are you sure that /etc/make.conf allows to use different default versions per port?

I try to compile net-snmp with base openssl instead of openssl port.
 
Yes I have 12R.

Finally I change openssl to base and recompile the ports.

Any idea why the openssl port still has older version?
 
Thank you all for the replies.

Yes I know about the openssl111 port.

As base has the same version for now I use openssl from base. In the future I plan to change to openssl111 or openssl port if by that time uses the new version.
 
Any idea why the openssl port still has older version?
Bash:
$ echo foobar > keyfile
$ echo "to encrypt" | /usr/bin/openssl aes-256-cbc -a -salt -out encrypt -pass file:keyfile
$ /usr/bin/openssl aes-256-cbc -d -a -in encrypt -pass file:keyfile
to encrypt
$  /usr/local/bin/openssl aes-256-cbc -d -a -in encrypt -pass file:keyfile
*** WARNING : deprecated key derivation used.
Using -iter or -pbkdf2 would be better.
bad decrypt
34387091456:error:06065064:digital envelope routines:EVP_DecryptFinal_ex:bad decrypt:crypto/evp/evp_enc.c:537:
$  /usr/bin/openssl version
OpenSSL 1.0.2o-freebsd  27 Mar 2018
$  /usr/local/bin/openssl version
OpenSSL 1.1.1a  20 Nov 2018
But it's maybe a bug.
 
Back
Top