In certain error conditions, don't just abort the connection; instead, fake a packet length.

The conditions are: length ludicrously short or ludicrously long; too
little padding; no payload; length not a multiple of cipher block
length.

This is done to defeat protocol attacks that use connection teardown as
a way of detecting whether certain plaintext bits are zero.
doc/SandPfinal.pdf reports on one such attack.