https://bugs.exim.org/show_bug.cgi?id=2018
--- Comment #3 from Jeremy Harris <jgh146exb@???> ---
So your incoming connection did not talk TLS-on-connect. You're assuming the
model of "proxying of a remote tls-on-connect", I think - whereas Exim is
assuming, if it supports it at all, a local tls-on-connect between the proxy
and
the MTA.
The standard for Proxy Protocol mentions a client type PP2_CLIENT_SSL
"indicates that the client connected over SSL/TLS" which I think at least
allows for the possibility of the remote TCP connection terminating a TLS.
It isn't quite clear whether that is the only model it supports. The v1
portion of the spec says "sent immediately and at once upon the connection
establishment" but fails to say whether it is talking about the TCP connection
or the TLS connection, for a TLS case.
--
You are receiving this mail because:
You are on the CC list for the bug.
