Closed greg-1-anderson closed 2 years ago
You are building on Visual Studio 2015
images which is based on Windows Server 2012 R2. It could be that 2012 R2 does not support some ciphers, so it's recommended to switch to Visual Studio 2019
or Visual Studio 2017
images which are based on Windows Server 2019 and Windows Server 2016 respectively.
OK, thanks.
Up until recently (a couple of weeks ago), our Appveyor tests were running without problem. Recently, they started failing during setup.
Command we're trying to run:
Error message we're getting:
I can curl
https://curl.se/ca/cacert.pem
locally without issue.I checked the supported cipher suites supported by the server:
According to #1889, though, Appveyor has supported TLS 1.2 for many years. TLS 1.3 is still the most recent version, so I can't imagine that the problem could be caused by Appveyor dropping support for older protocols.
As a workaround, we were able to successfully switch to using curl:
So, in short, writing up this report was the rubber duck I needed to fix the problem. Since my testing seems to have revealed a problem with Appveyor's DownloadFile, I am reporting it anyway, although I do not need it to be resolved for our builds.
Our Appveyor configuration is here:
https://github.com/drush-ops/drush/blob/11.x/appveyor.yml
n.b. At the time of this writing, that's the broken configuration using DownloadFile, although we will probably merge the PR that fixes it with curl shortly. The PR in question is: https://github.com/drush-ops/drush/pull/5148