Ah, thanks, I see. No, it definitely means the chain file here.
But I didn't fully understand this either. So I started to read the tls.c
file of sendmail, and got some understanding of what they are doing.
Then I tried to do just the same with openssl s_client
- and got the same error!
So, sendmail is out of the loop, and I suppose this can happen with any software for mutual auth that links openssl.
I think over time we will see more of these. Usually when people get that error, they would think, "bah, thats a really old client - it's their problem", and never mind. Only a small percentage comes up to here.