499
513
// First message, be extra suspicious:
500
514
// this might not be a TLS client.
501
515
// Bail out before reading a full 'body', if possible.
503
517
// If the version is >= 16.0, it's probably not real.
504
518
// Similarly, a clientHello message encodes in
505
519
// well under a kilobyte. If the length is >= 12 kB,