In s23_srvr.c there is a length test if ((csl+sil+cl+11) != s->packet_length) { SSLerr(SSL_F_GET_CLIENT_HELLO,SSL_R_RECORD_LENGTH_MISMATCH)
in case that the record contains a SSLV3 or TLSv1 header. IMO the != should be a > since tls allows additional data in extensions. Peter
smime.p7s
Description: S/MIME Cryptographic Signature