The OpenSSL project is rapidly moving through the release process for OpenSSL 3.5 which is the next LTS after the 3.0 release. After 1 Alpha, the first beta was published. The release will include FIPS standard PQC algorithms. Requesting for an exp-run so ports maintainers can get early feedback on problems with OpenSSL 3.5. Haven't seen any comments or statements on upgrading OpenSSL in base, but the current 3.0 is expected to go End-of-Life somewhere in 2027. This would also be preparing for
https://openssl-library.org/post/2025-02-20-openssl-3.5-lts/ "The previous LTS (OpenSSL 3.0) will continue to be fully supported until September 7, 2025 and receive security fixes until September 7, 2026. Projects that currently depend on 3.0 are strongly encouraged to switch to OpenSSL 3.5 once it has been released."
What kind of exp-run do you want? DEFAULT_VERSIONS+=ssl=openssl35 ?
(In reply to Antoine Brodin from comment #2) Yes please. That's the idea.
OpenSSL 3.5 is released: https://openssl-library.org/post/2025-04-08-openssl-35-final-release/
Port was just updated to the 3.5.0 release version.
One gap I've noticed for openssl35 as the LTS is the lack of kTLS support. Looking at the original backport patch, it seems most everything is on 3.5 now with the exception of readahead checks on the rx side. Interestingly, a build with no patches applied "works" with some limited testing I've done, but I'm assuming the readahead checks are important for freebsd specifically since there's no upstream equivalent AFAICT. I can throw a patch together with just these changes cherrypicked, but I wanted to check in first here to make sure that's the right path forward and that I wasn't duplicating work someone else was looking into.
Some new failure logs: https://pkg-status.freebsd.org/gohan06/data/142amd64-default-foo/2025-04-26_08h31m26s/logs/errors/murmur-1.3.4_11.log https://pkg-status.freebsd.org/gohan06/data/142amd64-default-foo/2025-04-26_08h31m26s/logs/errors/spotify-tui-0.25.0_35.log https://pkg-status.freebsd.org/gohan06/data/142amd64-default-foo/2025-04-26_08h31m26s/logs/errors/ptlib-2.10.11_7.log https://pkg-status.freebsd.org/gohan06/data/142amd64-default-foo/2025-04-26_08h31m26s/logs/errors/tcltls-1.7.22_1.log https://pkg-status.freebsd.org/gohan06/data/142amd64-default-foo/2025-04-26_08h31m26s/logs/errors/py311-pyftpdlib-1.5.10_1.log https://pkg-status.freebsd.org/gohan06/data/142amd64-default-foo/2025-04-26_08h31m26s/logs/errors/iroffer-dinoex-3.33_4.log https://pkg-status.freebsd.org/gohan06/data/142amd64-default-foo/2025-04-26_08h31m26s/logs/errors/koboldcpp-1.89.log https://pkg-status.freebsd.org/gohan06/data/142amd64-default-foo/2025-04-26_08h31m26s/logs/errors/koboldcpp-portable-1.89.log https://pkg-status.freebsd.org/gohan06/data/142amd64-default-foo/2025-04-26_08h31m26s/logs/errors/llama-cpp-5162.log https://pkg-status.freebsd.org/gohan06/data/142amd64-default-foo/2025-04-26_08h31m26s/logs/errors/dpdk22.11-22.11.2.1402000_1.log https://pkg-status.freebsd.org/gohan06/data/142amd64-default-foo/2025-04-26_08h31m26s/logs/errors/gost-engine-openssl30-g20230106_1.log https://pkg-status.freebsd.org/gohan06/data/142amd64-default-foo/2025-04-26_08h31m26s/logs/errors/libpki-0.9.2_6.log https://pkg-status.freebsd.org/gohan06/data/142amd64-default-foo/2025-04-26_08h31m26s/logs/errors/castor-0.8.16_43.log https://pkg-status.freebsd.org/gohan06/data/142amd64-default-foo/2025-04-26_08h31m26s/logs/errors/envoy-1.26.1_9.log https://pkg-status.freebsd.org/gohan06/data/142amd64-default-foo/2025-04-26_08h31m26s/logs/errors/persepolis-3.2.0_3.log https://pkg-status.freebsd.org/gohan06/data/142amd64-default-foo/2025-04-26_08h31m26s/logs/errors/rearx-0.1.4_38.log