This is related to the KTcpSocket removal. There are however a few users of this independent of KTcpSocket, such as ktp-auth-handler, and the KIO certificate manager and SSL error UI.
This might require making KSslError a thin wrapper around QSslError as a transition step during KF5 time without breaking API, so we can port the users already.