I doubt this could be a bug but after 10 hours of debugging I have to post. The only clue I have left is that regardless if the below lines are used in sendmail.mc or if I comment them out, I get the same SSL errors (140BA0C3, 140770FC, SSL_new, etc) but can't find anything helpful on these codes. The same certs/key are being used on port 443 (apache) and 995 (dovecot) and are working flawlessly so I know the issue has to be Sendmail.
What am I missing?
---== Installed Software ==---[font=Courier]
$ rpm -qa | grep sendmail
---== Sendmail.mc ==---[font=Courier]
---==Testing from remote server ==---[font=Courier]
$ openssl s_client -host www.t1shopper.com
7948:error:140770FC:SSL routines:SSL23_GET_SERVER_HELLO:unknown protocol:s23_clnt.c:583:
---== Here's the mail log from from the above client request ==--- [font=Courier]
Mar 3 18:52:41 www sendmail: NOQUEUE: connect from [22.214.171.124]
Mar 3 18:52:41 www sendmail: AUTH: available mech=CRAM-MD5 DIGEST-MD5, allowed mech=LOGIN PLAIN
Mar 3 18:52:41 www sendmail: q23Iqfve009360: Milter: no active filter
Mar 3 18:52:41 www sendmail: STARTTLS=server: 9360:error:140BA0C3:SSL routines:SSL_new:null ssl ctx:ssl_lib.c:244:
Mar 3 18:52:41 www sendmail: q23Iqfve009360: [126.96.36.199] did not issue MAIL/EXPN/VRFY/ETRN during connection to SSLMTA