version some time soon.

Add appropriate #ifdefs round client cert functions in headers.

Submitted by: Daniel Black <daniel.subs@internode.on.net>

PR: 1672

Add a -certsout option to output any certificates in a message.

Add test for example 4.11

PR: 1607
Submitted by: "Christophe Macé" <mace.christophe@gmail.com>

PR: 1659

PR: 1552
Submitted by: Roumen Petrov <openssl@roumenpetrov.info>, "Alon Bar-Lev" <alon.barlev@gmail.com>

to 'unsigned long' (ie. odd platforms/compilers), so a pointer-typed
version was added but it required portable code to check *both* modes to
determine equality. This commit maintains the availability of both thread
ID types, but deprecates the type-specific accessor APIs that invoke the
callbacks - instead a single type-independent API is used.  This simplifies
software that calls into this interface, and should also make it less
error-prone - as forgetting to call and compare *both* thread ID accessors
could have led to hard-to-debug/infrequent bugs (that might only affect
certain platforms or thread implementations). As the CHANGES note says,
there were corresponding deprecations and replacements in the
thread-related functions for BN_BLINDING and ERR too.

print out receipt requests.

Add id-ct-asciiTextWithCRLF OID.

Give more meaninful error message is attempt to use key ID from a certificate
without a key ID.

Make streaming support in cms cleaner.

Note errors in various S/MIME functions if CMS_final() fails.

Add streaming support for enveloped data.

OPENSSL_NO_DEPRECATED, etc. Steve, please double-check the CMS stuff...

examples. All RFC4134 examples can not be processed.