I've released nsopenssl 1.1b which allows the server to pass a certificate chain to the client during the connection setup. 1.1b includes the fix in 1.1a (see http://scottg.net for more info). Your server's certificate and the certificates in the chain must be in PEM format. Compile and install nsopenssl 1.1b, append the CA certificates in the chain to the end of your server certificate .pem file and start your server. At that point the certificate chain will be sent to clients. /s.
