Bug#348046: exim4-daemon-heavy: TLS delivery attempts fail with: (gnutls_handshake): A TLS packet with unexpected length was received.

[Ian Zimmerman]

Marc> Hm. Looks like gnutls-cli-debug cannot be used to debug STARTTLS
Marc> connects. Does hiking up gnutls-cli's debug level offer comparable
Marc> verbosity?

Not really :\

itz at ahiker:~$ gnutls-cli --port 25  -d 5 --starttls localhost
|<2>| ASSERT: gnutls_psk.c:101
Resolving 'localhost'...
Connecting to '127.0.0.1:25'...

- Simple Client Mode:

220 ahiker.homeip.net ESMTP Exim 4.62 Wed, 26 Jul 2006 22:08:04 -0400

I assume this is the initial unencrypted greeting.  It hangs here, have to
hit ^C, which is actually similar to my original attempt to send real mail
from one Exim to another, also hangs.  That's how I came to investigate
with openssl and you know the rest.

Exim TLS _client_ to a different TLS enabled MTA (postfix, which links to
openssl) works fine.

-- 
A true pessimist won't be discouraged by a little success.