RFC 3394 section 2 mandates minimal plaintext length to be two 64-bit blocks
so minimal cipher text length has to be three 64-bit blocks.

PKCS#11 name for this mode is CKM_AES_WRAP_PAD. It can be used for
wrapping key data with length in range [1, 2^31].

This mode can wrap any key with length in [1, 2^31] range.

Beware!
This wrapping mode was designed for AES but this implementation allows you
to work with any 128 bit block cipher. (The same applies to original
wrapping mode from RFC 3394 implemented in CRYPTO_128_wrap.)

This is going to be especially useful for RFC 5649 implementation.

This is going to be especially useful for RFC 5649 implementation.

PR#3410

This ensures high performance is situations when assembler supports
AVX2, but not AD*X.

This is to compensate for higher aes* instruction latency on Cortex-A57.

Implemented as STACK_OF(OPENSSL_STRING).

Just store NUL-terminated strings.  This works better when we add
support for multiple hostnames.

In the ssl_cipher_get_evp() function, fix off-by-one errors in index validation before accessing arrays.

Bug discovered and fixed by Miod Vallat from the OpenBSD team.

PR#3375

This reverts commit abfb989.

Incorrect attribution

cms, ocsp, s_client, s_server and smime tools also use args_verify()
for parsing options, that makes them most of the same options
verify tool does. Add those options to man pages and reference
their explanation in the verify man page.

just making sure the options are listed in the alphabetical order
both in SYNOPSIS and DESCRIPTION, no text changes

The options related to policy used for verification, verification
of subject names in certificate and certificate chain handling
were missing in the verify(1) man page. This fixes this issue.

-CAfile and -CApath is documented in OPTIONS but is missing
in SYNOPSIS, add them there

Add -trusted_first description to help messages and man pages
of tools that deal with certificate verification.