Added support for channel binding tokens when using HTTPS connections

[jborean93]

Currently if a WSMan target has set Auth/CbtHardeningLevel = Strict then OMI will fail to connect over HTTPS when using Negotiate/Kerberos. This is because the current code does not pass in the necessary structure to GSSAPI that binds the auth with the TLS channel that the CBT check is for.

This PR retrieves the CBT data for GSSAPI if possible and makes sure it's passed into gss_init_sec_context if available. It also rejigs some of the SSL connection code in preparation for cert verification that I'm hoping to look into next.

TODO:

• Add Integration tests (I think this will fail due to MIT bug when SPNEGO didn't pass along the CBT info until 1.18.2 - krb5/krb5@d16325a)
  • Integration tests with Kerberos
  • Integration tests with NTLM
  • SHA1 cert
  • SHA256 cert
  • SHA384 cert
  • SHA512 cert
  • RSASSA-PSS
• Test on macOS
• Add docs on this functionality and the limitations