Ensure that there are ciphersuites enabled for the maximum supported version we will accept in a ClientHello. Reviewed-by: Richard Levitte <levitte@openssl.org> (Merged from https://github.com/openssl/openssl/pull/3316)
Also add negative tests for password mismatch. Reviewed-by: Richard Levitte <levitte@openssl.org>