Log message:
Mass-change BUILD_DEPENDS to TOOL_DEPENDS outside mk/.

Almost all uses, if not all of them, are wrong, according to the
semantics of BUILD_DEPENDS (packages built for target available for
use _by_ tools at build-time) and TOOL_DEPEPNDS (packages built for
host available for use _as_ tools at build-time).

No change to BUILD_DEPENDS as used correctly inside buildlink3.

As proposed on tech-pkg:
https://mail-index.netbsd.org/tech-pkg/2023/06/03/msg027632.html

Log message:
py-OpenSSL: updated to 23.2.0

23.2.0 (2023-05-30)

Backward-incompatible changes:
- Removed ``X509StoreFlags.NOTIFY_POLICY``.

Changes:
- ``cryptography`` maximum version has been increased to 41.0.x.
- Invalid versions are now rejected in ``OpenSSL.crypto.X509Req.set_version``.
- Added ``X509VerificationCodes`` to ``OpenSSL.SSL``.

Log message:
py-OpenSSL: updated to 23.1.1

23.1.1 (2023-03-28)

Changes:
- Worked around an issue in OpenSSL 3.1.0 which caused \ 
`X509Extension.get_short_name` to raise an exception when no short name was \ 
known to OpenSSL.

23.1.0 (2023-03-24)

Changes:
- ``cryptography`` maximum version has been increased to 40.0.x.
- Add ``OpenSSL.SSL.Connection.DTLSv1_get_timeout`` and \ 
``OpenSSL.SSL.Connection.DTLSv1_handle_timeout``
  to support DTLS timeouts

Log message:
py-OpenSSL: update test status

Log message:
Updated security/py-OpenSSL to 23.0.0

The previous py-OpenSSL-22.1.0 would abort at runtime against
py-cryptography-39.0.x which broke py-certbot and similar.

changes:
- Add OpenSSL.SSL.X509StoreFlags.PARTIAL_CHAIN constant to allow
  for users to perform certificate verification on partial certificate
  chains. #1166
- cryptography maximum version has been increased to 39.0.x.

Log message:
fighting a losing battle against the py-cryptography rustification, part 4

Add support for py-OpenSSL to versioned_dependencies.mk

Log message:
py-OpenSSL: updated to 22.1.0

22.1.0:

Backward-incompatible changes:

Remove support for SSLv2 and SSLv3.
The minimum cryptography version is now 37.0.2.
The OpenSSL.crypto.X509StoreContextError exception has been refactored, changing \ 
its internal attributes.

Deprecations:

OpenSSL.SSL.SSLeay_version is deprecated in favor of \ 
OpenSSL.SSL.OpenSSL_version. The constants OpenSSL.SSL.SSLEAY_* are deprecated \ 
in favor of OpenSSL.SSL.OPENSSL_*.

Changes:

Add OpenSSL.SSL.Connection.set_verify and OpenSSL.SSL.Connection.get_verify_mode \ 
to override the context object’s verification flags.
Add OpenSSL.SSL.Connection.use_certificate and \ 
OpenSSL.SSL.Connection.use_privatekey to set a certificate per connection (and \ 
not just per context)

Log message:
py-OpenSSL: update to 22.0.0.

22.0.0 (2022-01-29)
-------------------

Backward-incompatible changes:
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^

- Drop support for Python 2.7.
  `#1047 <https://github.com/pyca/pyopenssl/pull/1047>`_
- The minimum ``cryptography`` version is now 35.0.

Deprecations:
^^^^^^^^^^^^^

Changes:
^^^^^^^^

- Expose wrappers for some `DTLS
  <https://en.wikipedia.org/wiki/Datagram_Transport_Layer_Security>`_
  primitives. `#1026 <https://github.com/pyca/pyopenssl/pull/1026>`_

Log message:
*: convert to versioned_dependencies for py-cryptography

Log message:
*: bump PKGREVISION for egg.mk users

They now have a tool dependency on py-setuptools instead of a DEPENDS