Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

SSL connect error when fetching crates from Win 8.1: schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE #9788

Closed
Boscop opened this issue Aug 14, 2021 · 11 comments · Fixed by #9809
Closed

SSL connect error when fetching crates from Win 8.1: schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE #9788

Boscop opened this issue Aug 14, 2021 · 11 comments · Fixed by #9809
Labels
A-networking Area: networking issues, curl, etc. C-bug Category: bug O-windows OS: Windows regression-from-stable-to-beta Regression in beta that previously worked in stable.

Comments

@Boscop
Copy link

Boscop commented Aug 14, 2021

Problem
cargo build now fails to fetch my deps. It was working on this same Win 8.1 computer before I updated my rustup/nightly.

> cargo build
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (2 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
warning: spurious network error (1 tries remaining): [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)
error: failed to download from `https://crates.io/api/v1/crates/addr2line/0.15.2/download`

Caused by:
  [35] SSL connect error (schannel: initial InitializeSecurityContext failed: SEC_E_ILLEGAL_MESSAGE (0x80090326) - This error usually occurs when a fatal SSL/TLS alert is received (e.g. handshake failed). More detail may be available in the Windows System event log.)

It seems I get this error for each dependency.

Btw, when I go to the url https://crates.io/api/v1/crates/addr2line/0.15.2/download in chrome, it downloads the addr2line-0.15.2.crate file successfully!

Notes

Output of cargo version: cargo 1.56.0-nightly (b51439fd8 2021-08-09)

It was working before I updated my nightly, on this same Win 8.1 computer!
I updated my rust-toolchain file from nightly-2021-06-09 to nightly-2021-08-14:

> cargo new foo
info: syncing channel updates for 'nightly-2021-08-14-x86_64-pc-windows-msvc'
info: latest update on 2021-08-14, rust version 1.56.0-nightly (5a19ffe1c 2021-08-13)
info: downloading component 'cargo'
info: downloading component 'rust-std'
info: downloading component 'rustc'
info: installing component 'cargo'
info: using up to 500.0 MiB of RAM to unpack components
info: installing component 'rust-std'
info: installing component 'rustc'
memory allocation of 16777216 bytes failed

> rustup show
Default host: x86_64-pc-windows-msvc
rustup home:  D:\Program Files\.multirust

info: syncing channel updates for 'nightly-2021-08-14-x86_64-pc-windows-msvc'
info: latest update on 2021-08-14, rust version 1.56.0-nightly (5a19ffe1c 2021-08-13)
info: downloading component 'rustc'
info: downloading component 'cargo'
info: downloading component 'rust-std'
info: downloading component 'rust-docs'
 17.1 MiB /  17.1 MiB (100 %)   1.6 MiB/s in  9s ETA:  0s
info: downloading component 'rustfmt'
  2.1 MiB /   2.1 MiB (100 %)   1.7 MiB/s in  1s ETA:  0s
info: downloading component 'clippy'
info: removing previous version of component 'rustc'
warning: during uninstall component rustc was not found
info: removing previous version of component 'cargo'
warning: during uninstall component cargo was not found
info: removing previous version of component 'rust-std'
warning: during uninstall component rust-std was not found
info: removing previous version of component 'rust-docs'
warning: during uninstall component rust-docs was not found
info: removing previous version of component 'rustfmt'
warning: during uninstall component rustfmt was not found
info: removing previous version of component 'clippy'
warning: during uninstall component clippy was not found
info: installing component 'rustc'
info: using up to 500.0 MiB of RAM to unpack components
 75.5 MiB /  75.5 MiB (100 %)  11.3 MiB/s in  6s ETA:  0s
info: installing component 'cargo'
info: installing component 'rust-std'
 20.0 MiB /  20.0 MiB (100 %)  11.6 MiB/s in  1s ETA:  0s
info: installing component 'rust-docs'
 17.1 MiB /  17.1 MiB (100 %) 692.2 KiB/s in  1m  7s ETA:  0s
 13 IO-ops /  13 IO-ops (100 %)   2 IOPS in  5s ETA:  0s
info: installing component 'rustfmt'
 10 IO-ops /  10 IO-ops (100 %)   4 IOPS in  2s ETA:  0s
info: installing component 'clippy'
installed toolchains
--------------------

nightly-2020-10-19-x86_64-pc-windows-msvc
nightly-2020-11-24-x86_64-pc-windows-msvc
nightly-2020-11-25-x86_64-pc-windows-msvc
nightly-2021-03-25-x86_64-pc-windows-msvc
nightly-2021-06-09-x86_64-pc-windows-msvc
nightly-2021-08-14-x86_64-pc-windows-msvc
nightly-x86_64-pc-windows-msvc (default)
1.52.1-x86_64-pc-windows-msvc

active toolchain
----------------

nightly-2021-08-14-x86_64-pc-windows-msvc (overridden by 'D:\projects\foo\rust-toolchain')
rustc 1.56.0-nightly (5a19ffe1c 2021-08-13)

Do you know how I can get it working with the latest nightly on Win 8.1? :)
Any help would be greatly appreciated.
@Boscop Boscop added the C-bug Category: bug label Aug 14, 2021
@Boscop
Copy link
Author

Boscop commented Aug 14, 2021
edited
Loading

Btw, when I manually use the curl.exe from here to fetch this URL, it gives no SSL errors:

D:\curl-7.78.0-win64-mingw\bin> curl https://crates.io/api/v1/crates/addr2line/0.15.2/download -v
*   Trying 216.137.37.22:443...
* Connected to crates.io (216.137.37.22) port 443 (#0)
* ALPN, offering h2
* ALPN, offering http/1.1
* successfully set certificate verify locations:
*  CAfile: D:\curl-7.78.0-win64-mingw\bin\curl-ca-bundle.crt

*  CApath: none
* TLSv1.3 (OUT), TLS handshake, Client hello (1):
* TLSv1.3 (IN), TLS handshake, Server hello (2):
* TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
* TLSv1.3 (IN), TLS handshake, Certificate (11):
* TLSv1.3 (IN), TLS handshake, CERT verify (15):
* TLSv1.3 (IN), TLS handshake, Finished (20):
* TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
* TLSv1.3 (OUT), TLS handshake, Finished (20):
* SSL connection using TLSv1.3 / TLS_AES_128_GCM_SHA256
* ALPN, server accepted to use h2
* Server certificate:
*  subject: CN=crates.io
*  start date: Oct 21 00:00:00 2020 GMT
*  expire date: Nov 20 23:59:59 2021 GMT
*  subjectAltName: host "crates.io" matched cert's "crates.io"
*  issuer: C=US; O=Amazon; OU=Server CA 1B; CN=Amazon
*  SSL certificate verify ok.
* Using HTTP2, server supports multiplexing
* Connection state changed (HTTP/2 confirmed)
* Copying HTTP/2 data in stream buffer to connection buffer after upgrade: len=0

* Using Stream ID: 1 (easy handle 0x19542fb200)
> GET /api/v1/crates/addr2line/0.15.2/download HTTP/2
> Host: crates.io
> user-agent: curl/7.78.0
> accept: */*
>
* Connection state changed (MAX_CONCURRENT_STREAMS == 128)!
< HTTP/2 302
< content-length: 0
< location: https://static.crates.io/crates/addr2line/addr2line-0.15.2.crate
< server: nginx
< date: Sat, 14 Aug 2021 18:42:30 GMT
< x-content-type-options: nosniff
< x-frame-options: SAMEORIGIN
< x-xss-protection: 1; mode=block
< content-security-policy: default-src 'self'; connect-src 'self' *.ingest.sentr
y.io https://docs.rs https://play.rust-lang.org https://static.crates.io; script
-src 'self' 'unsafe-eval' 'sha256-n1+BB7Ckjcal1Pr7QNBh/dKRTtBQsIytFodRiIosXdE=';
 style-src 'self' 'unsafe-inline' https://code.cdn.mozilla.net; font-src https:/
/code.cdn.mozilla.net; img-src *; object-src 'none'
< access-control-allow-origin: *
< strict-transport-security: max-age=31536000
< via: 1.1 vegur, 1.1 c71d96b07b5616a6017c1713d231dd8f.cloudfront.net (CloudFron
t)
< vary: Accept,Accept-Encoding,Cookie
< x-cache: Miss from cloudfront
< x-amz-cf-pop: MRS52-C2
< x-amz-cf-id: 6c28hSZdPMDWIgCi82qy5_R7TJ9yDZb54Sl1C_fwMqkVmbh0OBAdfQ==
<
* Connection #0 to host crates.io left intact

It also seems to work when I set it to use schannel:

D:\curl-7.78.0-win64-mingw\bin> set CURL_SSL_BACKEND=schannel

D:\curl-7.78.0-win64-mingw\bin> curl https://crates.io/api/v1/crates/addr2line/0.15.2/download -v
*   Trying 216.137.37.85:443...
* Connected to crates.io (216.137.37.85) port 443 (#0)
* schannel: disabled automatic use of client certificate
> GET /api/v1/crates/addr2line/0.15.2/download HTTP/1.1
> Host: crates.io
> User-Agent: curl/7.78.0
> Accept: */*
>
* Mark bundle as not supporting multiuse
< HTTP/1.1 302 Moved Temporarily
< Content-Length: 0
< Connection: keep-alive
< Server: nginx
< Date: Sat, 14 Aug 2021 20:30:33 GMT
< Location: https://static.crates.io/crates/addr2line/addr2line-0.15.2.crate
< X-Content-Type-Options: nosniff
< X-Frame-Options: SAMEORIGIN
< X-Xss-Protection: 1; mode=block
< Content-Security-Policy: default-src 'self'; connect-src 'self' *.ingest.sentr
y.io https://docs.rs https://play.rust-lang.org https://static.crates.io; script
-src 'self' 'unsafe-eval' 'sha256-n1+BB7Ckjcal1Pr7QNBh/dKRTtBQsIytFodRiIosXdE=';
 style-src 'self' 'unsafe-inline' https://code.cdn.mozilla.net; font-src https:/
/code.cdn.mozilla.net; img-src *; object-src 'none'
< Access-Control-Allow-Origin: *
< Strict-Transport-Security: max-age=31536000
< Via: 1.1 vegur, 1.1 318cb50a962adf209b30dd5ad62f8111.cloudfront.net (CloudFron
t)
< Vary: Accept,Accept-Encoding,Cookie
< X-Cache: Miss from cloudfront
< X-Amz-Cf-Pop: MRS52-C2
< X-Amz-Cf-Id: 6d-QEi8LB_XLxQTMzpf-5wPnE1Y2-T0ZkSUbNWdORRvX-yuu0r4xLw==
<
* Connection #0 to host crates.io left intact

This might be relevant?: https://docs.microsoft.com/en-us/windows/win32/secauthn/tls-cipher-suites-in-windows-8-1

Here it says:

crates.io and Windows 7, 8, and 8.1 are always going to connect with a weak cipher suite. Microsoft might sunset Windows 8 and 8.1 in 2023.

@ehuss
Copy link
Contributor

ehuss commented Aug 14, 2021

Likely caused by rust-lang/rust#86874. It's hard to tell which change in libcurl might cause this, as there were a lot of TLS changes in 7.77.

@ehuss ehuss added A-networking Area: networking issues, curl, etc. O-windows OS: Windows regression-from-stable-to-beta Regression in beta that previously worked in stable. labels Aug 14, 2021
@joshtriplett
Copy link
Member

@Boscop We discussed this in today's @rust-lang/cargo meeting. We'd like some help tracking down the specific issue that changed here, so that we can evaluate what it would take to address it. If it's something straightforward to fix, we'd be happy to upgrade to a fixed version of a dependency to address this. If it's more fundamental or not straightforward to fix, we should talk about the amount of effort that should go into continuing to support host tools on Windows 8.

@rustbot ping windows

@rustbot
Copy link
Collaborator

rustbot commented Aug 17, 2021

Error: The feature ping is not enabled in this repository.
To enable it add its section in the triagebot.toml in the root of the repository.

Please let @rust-lang/release know if you're having trouble with this bot.

@ehuss
Copy link
Contributor

ehuss commented Aug 17, 2021

Adding a note: I think this may get fixed in 7.78: curl/curl#7138 I think that is slated for around September 15th. That needs more investigation.

@adumbidiot adumbidiot mentioned this issue Aug 19, 2021
Merged
@ehuss ehuss mentioned this issue Aug 20, 2021
Merged
@ehuss
Copy link
Contributor

ehuss commented Aug 20, 2021

Oh, I misread, 7.78 was already released a while ago. I have confirmed that it fixes the issue, and posed #9809 to fix it.

@bors bors closed this as completed in 53ea285 Aug 20, 2021
ehuss pushed a commit to ehuss/cargo that referenced this issue Aug 20, 2021
@bors @ehuss
Auto merge of rust-lang#9809 - ehuss:bump-curl, r=Eh2406
26528cf 
Bump curl.

This updates to the latest version of curl (7.78).  7.77 which is used in rust-lang/rust had an issue where it was failing in Windows 8.  I have confirmed that 7.78 works correctly.

Fixes rust-lang#9788
@ehuss ehuss mentioned this issue Aug 20, 2021
Merged
bors added a commit that referenced this issue Aug 20, 2021
@bors
Auto merge of #9810 - ehuss:beta-bump-curl, r=alexcrichton
ecec075 
[beta] Bump curl

Beta backport of #9809 to fix #9788

Also backport to appease CI:
* #9790 — Fix plugin registrar change.
* #9763 — Fix semver check for rust 1.54.0
@ehuss
Copy link
Contributor

ehuss commented Aug 22, 2021

I discovered that this also affects Windows Server 2012 as it hit one of my jobs in CI that happened to be using that.

@ehuss ehuss mentioned this issue Aug 22, 2021
Merged
@Luni-4
Copy link

Luni-4 commented Apr 21, 2023

I'm currently having the same problem pointed out by @ehuss on a Windows Server 2012 https://community-tc.services.mozilla.com/tasks/e8JaLE-UTGKHkiLtxsdfyg/runs/0/logs/public/logs/live_backing.log#L267

If there is another issue opened, sorry for this necroposting

@qmonnet qmonnet mentioned this issue May 10, 2023
Closed
@phanmn
Copy link

phanmn commented May 18, 2023

I'm currently having the same problem pointed out by @ehuss on a Windows Server 2012 https://community-tc.services.mozilla.com/tasks/e8JaLE-UTGKHkiLtxsdfyg/runs/0/logs/public/logs/live_backing.log#L267

If there is another issue opened, sorry for this necroposting

I tried install this https://support.microsoft.com/en-us/topic/update-adds-new-tls-cipher-suites-and-changes-cipher-suite-priorities-in-windows-8-1-and-windows-server-2012-r2-8e395e43-c8ef-27d8-b60c-0fc57d526d94 and set CURL_SSL_BACKEND=openssl and it works

@Luni-4 Luni-4 mentioned this issue May 19, 2023
Closed
@Luni-4
Copy link

Luni-4 commented May 19, 2023

@phanmn
Thank you for your help!
I tried to add set CURL_SSL_BACKEND=openssl to our CI, but it doesn't seem to work.

But how can I install the Microsoft update during CI run? May you provide me an example please? Thanks in advance!

@phanmn
Copy link

phanmn commented May 19, 2023

hi @Luni-4

I updated it manually on our Windows server 2012

@weihanglo weihanglo mentioned this issue Jun 23, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
A-networking Area: networking issues, curl, etc. C-bug Category: bug O-windows OS: Windows regression-from-stable-to-beta Regression in beta that previously worked in stable.
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Bump curl. ehuss/cargo
6 participants
@ehuss @joshtriplett @Boscop @phanmn @Luni-4 @rustbot