Juniper SSL VPN login fails: A TLS packet with unexpected length was received.

[Tom Metro]

I've successfully used a patched (see prior thread[1]) OpenConnect 7.05
on a VM running Ubuntu 14.10 to connect to the same Juniper VPN server
I'm trying to connect to now. The environment is different in the
following way:

-OpenConnect 7.06 (same patch applied as before; has the patch been
added to HEAD?) instead of 7.05
-Ubuntu 14.04 instead of 14.10
-VM is hosted at DigitalOcean instead of on my local machine

When I attempt to connect I get:

GET https://vpn.example.com/
Attempting to connect to server 167.79.177.50:443
Using certificate file key.pfx
Using client certificate 'key'
SSL negotiation with vpn.example.com
Connected to HTTPS on vpn.example.com
Got HTTP response: HTTP/1.1 302 Found
Location: https://vpn.example.com/dana-na/auth/url_3/welcome.cgi
Content-Type: text/html; charset=utf-8
Set-Cookie: DSSIGNIN=url_3; path=/dana-na/; secure
Set-Cookie: DSIVS=; path=/; expires=Thu, 01 Jan 1970 22:00:00 GMT; secure
Set-Cookie: DSSignInURL=/partners; path=/; secure
Connection: close
Content-Length: 0
HTTP body length:  (0)
GET https://vpn.example.com/dana-na/auth/url_3/welcome.cgi
SSL negotiation with vpn.example.com
Connected to HTTPS on vpn.example.com
Got HTTP response: HTTP/1.1 200 OK
Content-Type: text/html; charset=utf-8
Date: Mon, 18 May 2015 22:49:44 GMT
x-frame-options: SAMEORIGIN
Connection: close
Pragma: no-cache
Cache-Control: no-store
Expires: -1
HTTP body http 1.0 (-1)
Failed to read from SSL socket: A TLS packet with unexpected length was
received.
Failed to obtain WebVPN cookie


When searching for answers, the most relevant hit was:

https://bugs.launchpad.net/ubuntu/+source/openconnect/+bug/1225276

from 2013, which suggested this patch:

http://git.infradead.org/users/dwmw2/openconnect.git/commitdiff/c7077b96b

which I confirmed is already in the version of the code I'm using.

Suggestions?

 -Tom


1.
http://lists.infradead.org/pipermail/openconnect-devel/2015-April/002896.html