DMARC-Filter: OpenDMARC Filter v1.4.2 delorie.com 502LFJYo4145386
Authentication-Results: delorie.com; dmarc=pass (p=none dis=none) header.from=cygwin.com
Authentication-Results: delorie.com; spf=pass smtp.mailfrom=cygwin.com
DKIM-Filter: OpenDKIM Filter v2.11.0 delorie.com 502LFJYo4145386
Authentication-Results: delorie.com;
	dkim=pass (1024-bit key, unprotected) header.d=cygwin.com header.i=@cygwin.com header.a=rsa-sha256 header.s=default header.b=a3/iOllq
X-Recipient: archive-cygwin AT delorie DOT com
DKIM-Filter: OpenDKIM Filter v2.11.0 sourceware.org D25473858D21
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cygwin.com;
	s=default; t=1735852517;
	bh=y7oAHd95lDSnUJvfQmw4G6CF7J5uQgbi29rfRIYVUo8=;
	h=Date:Subject:To:References:In-Reply-To:List-Id:List-Unsubscribe:
	 List-Archive:List-Post:List-Help:List-Subscribe:From:Reply-To:
	 From;
	b=a3/iOllqEwycprBdQHWtLJkeTW9hJT7Srt/9q4WtcxtF1bJBKvMcPZADI3NYIPmIY
	 +VIfetnHTlRYKwHqygu5QZr9MxCfgl5LrOCMgJwE7sphRRXSQVBejgPkEY9McBzIG5
	 cPPrWu4RIMgRBH29w9oR1XLcjT9RmF9KvN2ZI2Mg=
X-Original-To: cygwin AT cygwin DOT com
Delivered-To: cygwin AT cygwin DOT com
DMARC-Filter: OpenDMARC Filter v1.4.2 sourceware.org A30CC3858D1E
ARC-Filter: OpenARC Filter v1.0.0 sourceware.org A30CC3858D1E
ARC-Seal: i=1; a=rsa-sha256; d=sourceware.org; s=key; t=1735852454; cv=none;
 b=Niv5SZo7DOuzWTC1cEgpa7vHCPrJFVq8R2vieqKInCMo0xpsa+n2kJqOqmELFYn00nKkmmsfXs8DJGaDN+EOiM4W8/JKLhzVIKeYReapWXbNIpdweuIAZl4PMPKvJxix4bQR9ZEPL/CWAW/VUdS01tzwq/7j3LRHuWfmZCECHDs=
ARC-Message-Signature: i=1; a=rsa-sha256; d=sourceware.org; s=key;
 t=1735852454; c=relaxed/simple;
 bh=CuAC/n7+cktjtOogUt4EQEM4YcBT/99oMA4k5w3i5XM=;
 h=DKIM-Signature:Message-ID:Date:MIME-Version:Subject:To:From;
 b=Ew5k/Wh5ymBmuBPeQtWOAfkv8ueD2CPobTnVlO1kWtM4J21DYdQLTmKSfTGIUI5SCSbAdkq1TrlQW0Lzw58P6AtkS4iYM1Npv+B5/Bk5uq4YVizOKa+BjNMaVOKBaz/A60Bs1jYQGJ6N5XuzE8PLmrxzPkxLIMUatzxrELEQ0QA=
ARC-Authentication-Results: i=1; server2.sourceware.org
DKIM-Filter: OpenDKIM Filter v2.11.0 sourceware.org A30CC3858D1E
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
 d=1e100.net; s=20230601; t=1735852453; x=1736457253;
 h=content-transfer-encoding:in-reply-to:from:content-language
 :references:to:subject:user-agent:mime-version:date:message-id
 :x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
 bh=r9U5XDG5kK88s0YiTGlsiqRjyfmeeQ61NtW67PBN3oM=;
 b=ZXmDVmJAQF9q2/yrsJg93OOXcBkPQ09sxarK8eKOio1wJ9iWXFx1pfQ4Xom6d03T4A
 EmiMSSJGCB3cO9/xfOPpTaCp5D+6fKB0SUcLaUHGScGDvFClwDfdNdQo8qKMakuTb3UU
 v04WO3zGV4Ufs95CktHhWMUgj80LfBcr+BbWfqy1zxruMarWABMWwdj8iIUXZOd7Q5eh
 oxw9oEzsscrLHpiZeyt+j5K1U7FIR87qEbZogHIfJRr7Kz3aUusVJ/EklczjGZ/5Bqfq
 4hrxvtJCuRuS5afRRase89+7q4XgDih6c61LhGV1BZSAJUAB86e343iJCWdR6TIWcNJX
 8tpQ==
X-Gm-Message-State: AOJu0YzEr/WkDQ9qfDw5C//EAiK7MesJPLU06KQsKRRzeUdM3ymsozkV
 zNdK+dsf8ZrIwLoGNSRZhAChLKF9WaOvFhDURcl42c3qJxD8sUCZTaCLTQ==
X-Gm-Gg: ASbGncu8YZtY4K5KEmpBpIfoIagnUfuCfcAFNAgdR9/h7rAvgTpp+O7drqmxuWd57/q
 3MrGP7uTCfKqymZsK11htQcFEc7+DRapLBYZoXXlRvGeVe+fY5GHvTaBTPXU2fI7t+AJB+pgZKA
 OAy8T8xYLVMv4P033QhzzWCO4IcYgprUb79Cp69EbwUlHR0lzBxeXwBCqzUnMoFXlu6TC/CSvcs
 CW1Y9nIntybs2CuI1oYkXxn29J55NZkPn2Z/+V6YQ7vx8N79+Q2m26pFsW/9UdSnVtf+PW3efZx
 +nM=
X-Google-Smtp-Source: AGHT+IFC5eE1YU0FJCiqcEJN7sIU//IvOuaniddLolNcnyCNHeg5LNq8wNUTQjZBMxlgxp1ut33TqA==
X-Received: by 2002:a05:6830:3a19:b0:71d:eec3:5623 with SMTP id
 46e09a7af769-71fc5978601mr23793255a34.4.1735852453376; 
 Thu, 02 Jan 2025 13:14:13 -0800 (PST)
Message-ID: <6263ec8b-81c8-4218-a2d9-56bd035094d6@gmail.com>
Date: Thu, 2 Jan 2025 15:14:11 -0600
MIME-Version: 1.0
User-Agent: Mozilla Thunderbird
Subject: Re: cygwin /usr/bin/email
To: "cygwin AT cygwin DOT com" <cygwin AT cygwin DOT com>
References: <df8bd7d9-af0a-47aa-a234-2bd0e3d68b42 AT ariesinternet DOT com>
 <ce6c3673-ac82-4790-be59-becf7e4b1719 AT gmail DOT com>
 <131e8d1d-003b-4b52-880b-e045716db423 AT ariesinternet DOT com>
 <3acfba1b-3b95-48de-aaf8-ad4d645d3b1d AT ariesinternet DOT com>
 <5332276a-a158-44b4-a900-3e5c0778770b AT gmail DOT com>
 <9a281e75-c99f-4b9b-9a08-43b50958fc4d AT ariesinternet DOT com>
Content-Language: en-US
In-Reply-To: <9a281e75-c99f-4b9b-9a08-43b50958fc4d@ariesinternet.com>
X-BeenThere: cygwin AT cygwin DOT com
X-Mailman-Version: 2.1.30
Precedence: list
List-Id: General Cygwin discussions and problem reports <cygwin.cygwin.com>
List-Unsubscribe: <https://cygwin.com/mailman/options/cygwin>,
 <mailto:cygwin-request AT cygwin DOT com?subject=unsubscribe>
List-Archive: <https://cygwin.com/pipermail/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-request AT cygwin DOT com?subject=help>
List-Subscribe: <https://cygwin.com/mailman/listinfo/cygwin>,
 <mailto:cygwin-request AT cygwin DOT com?subject=subscribe>
From: =?utf-8?q?Ren=C3=A9_Berber_via_Cygwin?= <cygwin AT cygwin DOT com>
Reply-To: =?UTF-8?Q?Ren=C3=A9_Berber?= <rene DOT berber AT gmail DOT com>
Content-Type: text/plain; charset="utf-8"; Format="flowed"
Errors-To: cygwin-bounces~archive-cygwin=delorie DOT com AT cygwin DOT com
Sender: "Cygwin" <cygwin-bounces~archive-cygwin=delorie DOT com AT cygwin DOT com>
Content-Transfer-Encoding: 8bit
X-MIME-Autoconverted: from base64 to 8bit by delorie.com id 502LFJYo4145386

On 1/2/2025 9:48 AM, Paul McKinley via Cygwin wrote:

> Hi, René, thanks so much for your help!
> 
> The command reports version 1.3, nothing else.  Would it have listed 
> additional versions, possibly in different paragraphs if supported?

Openssl? It reports the higher version accepted.  The openssl command 
also allows you to limit the version, so you could check if 1.2 is 
accepted (or like in MS Windows is deprecated.)

> I use current version of Mozilla Thunderbird for an email client, no 
> issues with smtp sending there and connecting to the same email server 
> so I know that side's working, but it's using the Thunderbird ssl stack, 
> not openssl from cygwin.
> 
> Is TLS 1.3 not supported in cygwin email yet?

I don't know, I don't have it in my mail server, so haven't tested.

> The error I get is the timeout while trying to read from SMTP server so 
> it seems something's going wrong in the handshake sequence.

Yes, it looks like it.

> Greeting the SMTP server...
> email: FATAL: Smtp error: Timeout(10) while trying to read from SMTP server
> 
> <snip>
> 
> ---
> SSL handshake has read 3669 bytes and written 455 bytes
> Verification: OK
> ---
> New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384
> Server public key is 2048 bit
> Secure Renegotiation IS NOT supported
> Compression: NONE
> Expansion: NONE
> No ALPN negotiated
> Early data was not sent
> Verify return code: 0 (ok)
> ---
> 
> On port 465 it connects but doesn't do STARTTLS.
> 
> CONNECTED(00000005)
> Didn't find STARTTLS in server response, trying anyway...
> 100000000A000000:error:0A000126:SSL routines:ssl3_read_n:unexpected eof 
> while reading:ssl/record/rec_layer_s3.c:322:
> ---
> no peer certificate available
> ---
> No client certificate CA names sent
> ---
> SSL handshake has read 0 bytes and written 382 bytes
> Verification: OK
> ---
> New, (NONE), Cipher is (NONE)
> Secure Renegotiation IS NOT supported
> Compression: NONE
> Expansion: NONE
> No ALPN negotiated
> Early data was not sent
> Verify return code: 0 (ok)

After I enabled the option on the server I did get one successful test, 
then a failure.  Don't know what went wrong.  But if openssl doesn't 
work, anything that uses it, like eMail, won't work.

With eMail it just doesn't work.

BTW I didn't mention that in order to get out of openssl you can use 
Ctrl-d (the connection is live, you could send and receive anything 
after the "250 DSN"... we usually simulated the mail protocol by hand).
-- 
R.B.

-- 
Problem reports:      https://cygwin.com/problems.html
FAQ:                  https://cygwin.com/faq/
Documentation:        https://cygwin.com/docs.html
Unsubscribe info:     https://cygwin.com/ml/#unsubscribe-simple