So to follow up here after further investigation, here's some more data:

• I believe that this function can fail if and only if the underlying operating system lacks TLS 1.2 support
• When this call does fail because TLS 1.2 support is not available, the connection handle is still valid and the default protocol support is still enabled, so it's safe to continue on failure.
• Windows 7 has support for TLS 1.2 out of the box, without needing service packs or any software updates. This is not terribly obvious, since there's a KB discussing TLS 1.2 support - that KB is actually for the registry key support for enabling TLS 1.2 as a default protocol. Even without that update, applications can opt-in to TLS 1.2 support with this patch.
• Windows Vista was the first version of Windows to support TLS 1.2 at all.
• Windows XP does not support TLS 1.2 at all, nor will it, since it's now out of support. That's true of consumer versions of Windows XP, anyway; note that there is a specialized Windows XP for Point of Sale devices, and it does actually have an update to enable TLS 1.2.

I've updated this patch to do a few things:

1. We now ignore errors when trying to set the protocol versions. (Thanks @matklad for asking about this.) I feel pretty confident that we should be able to set this on Windows 7 and we could validate the return code, but even though we don't technically support earlier versions of Windows, it seems like we might as well just ignore the errors. We should only fail when TLS 1.2 is not available and we should still be able to continue to talk to non-TLS 1.2 servers.

2. We hide this behind a version test and only set this version flag on Windows versions prior to version 8. This ensures that we don't accidentally forget to update this when TLS 1.3 is available. Instead, we will continue on with the OS defaults on newer platforms.

This was implicit, but to be clear: this patch does now explicitly allow libgit2 to connect to github.com on Windows 7 (out of the box) and better. Windows XP and Vista can still connect to hosts that accept non-TLS 1.2, including Bitbucket and Visual Studio Team Services. (Though obviously both those sites will be disabling earlier versions as well and enforcing TLS 1.2.)

We hide this behind a version test and only set this version flag on Windows versions prior to version 8. This ensures that we don't accidentally forget to update this when TLS 1.3 is available.

I am afraid this is still better be updated for TLS 1.3. VerifyVersionInfo may return 6.2 even on newer version of windows, if manifests are not set-up properly:

https://msdn.microsoft.com/en-us/library/windows/desktop/ms725492(v=vs.85).aspx

If the application has no manifest, VerifyVersionInfo behaves as if the operation system version is Windows 8 (6.2).

That is, with this exact patch (without updating to TLS 1.3) the potentially bad behavior is that an unmanifested application on windows 10 might get TLS 1.2 even if 1.3 is available.

Yeah, that's not ideal. In a perfect world, we'd have a mechanism to query support and not look at version numbers. 🙄 I'll try to get that on somebody's backlog prior to TLS 1.3.

Note, though, that non-manifested applications report themselves as Windows 8 (NT 6.2). This patch only flips the protocols on for versions prior to 6.2. So Windows 8, 8.1 and 10 are using the system defaults; if they add TLS 1.3 and turn that on as a default, then we should happily work with TLS 1.3.

This patch only flips the protocols on for versions prior to 6.2

Hm, according to the update description, Windows Server 2012 is affected, and it is 6.2. However, Windows 8 is not mentioned in the update...

Hm, according to the update description, Windows Server 2012 is affected, and it is 6.2. However, Windows 8 is not mentioned in the update...

You're looking at the text on KB 3140245...?

It does indeed say that. I did not realize that until now, I assumed that since Server 2012 is Windows 8 that they would use the same policy here. Let me investigate.

Windows 8 went out of support a few months before that KB, which is probably why it isn't listed.

Just to further pile on to this thread a bit - I was really hoping to avoid hardcoding these values on newer systems that already support TLS 1.2 out of the box by default. My thinking here was that if we did that then this instance of libgit2 would be prevented from automatically including TLS 1.3 support if that were ever added.

I looked at version checks, which fail for the reasons @matklad mentioned - Windows is actively trying to subvert using version checks as a means to determine whether things are supported, and so all of the APIs to get version information basically lie in order to make sure that you don't use them.

I also looked at WinHttpQueryOption, which unfortunately does not accept WINHTTP_OPTION_SECURE_PROTOCOLS. That value can only be set according to the documentation. (The usage backs this up, it fails trying to query.)

So, again, this is not ideal, but there's no option to do this, AFAICT. I've asked around and will revisit this is I've missed something clever here, because allowing the OS to increase the supported protocols would be ideal.

Shipping this and cutting a new release candidate for 0.27.0. Thanks for your help @matklad!

Awesome, thanks a lot, @ethomson !