New upstream release 5.71
* Features
- OCSP stapling is requested and verified in the client mode.
- Using "verifyChain" automatically enables OCSP stapling in the client
mode.
- OCSP stapling is always available in the server mode.
- An inconclusive OCSP verification breaks TLS negotiation. This can be
disabled with "OCSPrequire = no".
- Added the "TIMEOUTocsp" option to control the maximum time allowed
for connecting an OCSP responder.
- Added support for Red Hat OpenSSL 3.x patches.
Resolves: rhbz#2239740
Signed-off-by: Clemens Lang <cllang@redhat.com>