> i didn't test the diff throughly, so it might be buggy. i hope not.

found one bug.

- else if(isDHE(c->cipher) || c->version != SSL3Version)
+ else if(isDHE(c->cipher))
  put16(p, n), p += 2;

and

- else if(isDHE(c->cipher) || c->version != SSL3Version)
+ else if(isDHE(c->cipher))
  nn = get16(p), p += 2, n -= 2;
  else
  nn = n;

it shouldn't check if we have a DHE cipher, we're already on SSL3+!

new diff attached.