Neil Horman

I can't comment on your security process, but I can confirm that all of the artifacts that you build in CI, as far as I can tell statically link to...

@ManickaP do you know how the CMakeLists.txt for submodules/ works? I'm looking at it, and it appears to me that when USE_SYSTEM_LIBCRYPTO is set, both libcrypto and libssl are getting...

@ManickaP but the system installed openssl libraries may not be version 3.5 or later. In fact they almost certainly will not be. Most distributions still ship openssl-3.0 or 3.2 As...

@ManickaP can you please try your tests with this patch: ``` diff --git a/submodules/CMakeLists.txt b/submodules/CMakeLists.txt index b6d074d68..ba1c46c0c 100644 --- a/submodules/CMakeLists.txt +++ b/submodules/CMakeLists.txt @@ -333,7 +333,8 @@ else() target_link_libraries( OpenSSLQuic INTERFACE...

Ok, thank you, thats good news, just need to figure out why the powershell build is breaking then. I'm sure I just did something stupid

I've created a PR for this issue, which address the static/dynamic mismatch when using USE_SYSTEM_LIBCRYPTO in the cmake build system. I've opted to leave the powershell build setup alone for...

@guhetier ostensibly the solution here I think (until such time as a sufficiently recent version of openssl is available in a os distrubuted platform packet) would be to: 1) build...

I think, for the sake of posterity, from what I'm reading the refcount api in openssl is essentially different from other refcount apis. The one I am most familiar with...

what issue is this related to? I ask because I know some versions of AIX have recvmmsg, so it might be good to constrain this conditional to a specific version...

ack, thank you