So it turns out that the flag actually does nothing. It calls an undocumented API which sets a flag in the SSL structure which is never ever used. So lots of code and docs just got removed :) -- Rich Salz, OpenSSL dev team; rsalz at openssl.org