debugging code that's seldom used.

Submitted by: Chromium Authors

Submitted by: David Miller

PR: 2874
Submitted by: Tomas Mraz

by client and send back to server. Also prints an abbreviated summary of
the connection parameters.

New option -verify_quiet to shut up the verify callback unless there is
an error.

client hello message. Previously this could only be retrieved on an initial
connection and it was impossible to determine the cipher IDs of any uknown
ciphersuites.

enhance EC method to support setting curve type when generating keys and add parameter encoding option

change the current certificate (in s->cert->key) to the one used and then
SSL_get_certificate and SSL_get_privatekey will automatically work.

right response is stapled. Also change SSL_get_certificate() so it
returns the certificate actually sent.  See
http://rt.openssl.org/Ticket/Display.html?id=2836.

scripts running the test OCSP responder.

new ctrl to retrive value of received temporary key in server key exchange message, print out details in s_client

insignificant, it's actually 4 cycles less for 14 instructions sequence!

assembler.

Multiple copies of the ENGINE will cause problems when it is cleaned up as
the methods are stored in static structures which will be overwritten and
freed up more than once.

Set static methods to NULL when the ENGINE is freed so it can be reloaded.

perform sanity checks on server certificate type as soon as it is received instead of waiting until server key exchange

some invalid operations for testing purposes. Currently this can be used
to sign using digests the peer doesn't support, EC curves the peer
doesn't support and use certificates which don't match the type associated
with a ciphersuite.

all derived keys to the message callback.

Add code to SSL_trace to include support for printing out keys.