[Fink-users] fink install error, curl: (35) Server aborted the SSL handshake

[Jim T. <jim...@jp...>]

"fink install gnupg" fails due to "curl: (35) Server aborted the SSL
handshake" when attempting to download
https://gnupg.org/ftp/gcrypt/gnupg/gnupg-1.4.23.tar.bz2.

The source code URL is good. It downloads using Chrome.

Is the curl library used by fink out of date?

It fails the same way when downloading using fink's command line curl, and
MacOS's /usr/bin/curl fails similarly.

I'm using MacOs 10.14.6

Here is info about web site's ssl implementation:

% openssl s_client -connect gnupg.org:443 -msg
> CONNECTED(00000005)
> >>> TLS 1.2 Handshake [length 00c3], ClientHello
>     01 00 00 bf 03 03 f0 81 86 fc 26 23 14 ac dd 1a
>     2a 23 ed b9 6a df 4a 25 f9 40 34 18 6a 48 fd 61
>     b7 8e bf 89 d4 b3 00 00 60 c0 30 c0 2c c0 28 c0
>     24 c0 14 c0 0a 00 9f 00 6b 00 39 cc a9 cc a8 cc
>     aa ff 85 00 c4 00 88 00 81 00 9d 00 3d 00 35 00
>     c0 00 84 c0 2f c0 2b c0 27 c0 23 c0 13 c0 09 00
>     9e 00 67 00 33 00 be 00 45 00 9c 00 3c 00 2f 00
>     ba 00 41 c0 11 c0 07 00 05 00 04 c0 12 c0 08 00
>     16 00 0a 00 15 00 09 00 ff 01 00 00 36 00 0b 00
>     02 01 00 00 0a 00 08 00 06 00 1d 00 17 00 18 00
>     23 00 00 00 0d 00 1c 00 1a 06 01 06 03 ef ef 05
>     01 05 03 04 01 04 03 ee ee ed ed 03 01 03 03 02
>     01 02 03
> write:errno=54
> ---
> no peer certificate available
> ---
> No client certificate CA names sent
> ---
> SSL handshake has read 0 bytes and written 0 bytes
> ---
> New, (NONE), Cipher is (NONE)
> Secure Renegotiation IS NOT supported
> Compression: NONE
> Expansion: NONE
> No ALPN negotiated
> SSL-Session:
>     Protocol  : TLSv1.2
>     Cipher    : 0000
>     Session-ID:
>     Session-ID-ctx:
>     Master-Key:
>     Start Time: 1571797481
>     Timeout   : 7200 (sec)
>     Verify return code: 0 (ok)
> -—