- for certificates without basic constraints
- MD2 support for older certificates (Because it is a less secure algorithm, it must be explicitly enabled).
Bug fixes and optimizations
Sanity check against invalid key lengths from certificate (potential DOS fix)
Fixed 64 bit issue with mpi.c
Fix potential leak in certificates with duplicate fields
Allow application data parsing within re-handshake state
