The dovcot port doesn't install doc/dovecot-openssl.cnf. The defaults are also to install all the SSL stuff to /etc/ssl instead of somewhere in /usr/local, which seems wrong. PR ports/51593 contains a patch that fixes much of this; I don't know what happened to that info.
State Changed From-To: open->feedback Awaiting maintainers feedback
The referenced PR refers to a significantly outdated revision of the port. The move from /var/dovecot/ssl to /etc/ssl was in order to comply with hier(7). Since SSL is neither configured nor enabled by default, I believe it should be up to the user to choose a non-standard location if they so wish. Below is a patch to install dovecot-openssl.cnf alongside the mkcert.sh script. Please commit it and close this PR.
State Changed From-To: feedback->closed Fixed. Thanks.