Curl 8.12 access violation with c-ares when HTTPS-RR enabled

[nono303]

Hi,
I've just compiled and tested curl 8.12 and have an Access violation related to c-ares.

This issue was not present on 8.11.1

⏩ use case :

curl -v https://www.google.com/
and
<?php curl_exec(curl_init("https://www.google.com/")); ?>

✅ when compiling with -DENABLE_ARES=OFF: all works

🔴 when compiling with -DENABLE_ARES=ON : I have this exception

libcurl!init_resolve_thread+0x2de
libcurl!Curl_resolv+0x9a8
libcurl!resolve_server+0x121
libcurl!create_conn+0xc26
libcurl!state_connect+0x49
libcurl!multi_runsingle+0x42f
libcurl!curl_multi_perform+0x11e
libcurl!easy_perform+0x1d5

FAULTING_SOURCE_FILE:  C:\sdk\src\curl\lib\asyn-thread.c
FAULTING_SOURCE_CODE:  
   387:     struct Curl_easy *data = td->tsd.data;
   388: #endif
   389: 
   390: #ifdef USE_HTTPSRR_ARES
>  391:     ares_destroy(data->state.async.tdata->channel);
   392: #endif
   393:     /*
   394:      * if the thread is still blocking in the resolve syscall, detach it and
   395:      * let the thread do the cleanup...
   396:      */
IMAGE_NAME:  libcurl.dll
FAILURE_BUCKET_ID:  NULL_CLASS_PTR_READ_c0000005_libcurl.dll!init_resolve_thread
OS_VERSION:  10.0.26100.1
BUILDLAB_STR:  ge_release
OSPLATFORM_TYPE:  x64
IMAGE_VERSION:  8.12.0.0

• my CMake C-Ares
• my CMake Curl

...
-- Found Cares: C:/sdk/release/vs17_x64-avx2/include (found version "1.34.4")
...
-- LTO supported and enabled
-- Protocols: dict file ftp ftps gopher gophers http https imap imaps ipfs ipns ldap ldaps mqtt pop3 pop3s rtsp scp sftp smb smbs smtp smtps telnet tftp ws wss
-- Features: alt-svc asyn-rr AsynchDNS brotli HSTS HTTP2 HTTPS-proxy HTTPSRR IDN IPv6 Kerberos Largefile libz MultiSSL NTLM SPNEGO SSL SSPI threadsafe TLS-SRP Unicode UnixSockets zstd
-- Enabled SSL backends: OpenSSL v3+ Schannel

I expected the following

No response

curl/libcurl version

8.12.0

operating system

Windows 11 24h2 x64
-- Using CMake version 3.31.5
-- curl version=[8.12.0-DEV]
-- The C compiler identification is MSVC 19.42.34438.0

[bagder]

Can you figure out why your build has USE_HTTPSRR_ARES enabled?

[bagder]

Ah right, because you have enabled this experimental feature. It is a bug indeed. I think I have a fix for it in #16219

[nono303]

Thx @bagder for your feedback!
compiling & testing 5e4ad2e don't crash anymore but I have this error : getaddrinfo() thread failed to start

Fyi:

• short build log curl_vs17-x64-avx2_2025-02-06_17-19-21.log
• verbose build log curl_vs17-x64-avx2_2025-02-06_17-26-26.log

available to so tests and qualifications ;)

[bagder]

Then you're running my draft pull request code. I would not recommend it.

[nono303]

Then you're running my draft pull request code. I would not recommend it.

It was only for testing purpose on my use-case ;)

[nono303]

@bagder
new test compiling master tag 8.12 with -DUSE_HTTPSRR=OFF -DENABLE_ARES=ON works without crash!

But found a strange regression between 8.11:

When I invoke libcurl throught php (8.4.4) and set OPTS with curl_setopt_array():

• ✅ When i set CURLOPT_HEADER = 1 without CURLOPT_DNS_SERVERS valued ⏩ headers are well returned
• 🔴 When i set CURLOPT_HEADER = 1 and CURLOPT_DNS_SERVERS='127.0.0.1' (whatever valued for dns)... ⏩ headers are not any more returned

EDIT digging a bit more one last one, might be related to a PHP bug (see php/php-src#17610)
But not sure as the PHP bug had been raised before 8.12...

[bagder]

Either way, it is a different problem so we don't deal with it in this issue.

[nono303]

Hi @bagder and sorry for some confusion as an other issue on php curl_setopt_array() is mixed in my 8.12 testing & reporting...

I found an another change (regression?) might be linked to this issue but fully related to curl 8.11.1 > 8.12 upgrade
Full use-case is described here php/php-src#17610 (comment)

To summarize when having ENABLE_ARES=ON, ENABLE_THREADED_RESOLVER=ON breaks CURLOPT_DNS_SERVERS

curl_setopt failed and whatever I set for DNS IP, it's not take in account

• ENABLE_THREADED_RESOLVER=OFF resolve the issue
• 8.11.1 work nice with ENABLE_THREADED_RESOLVER ON & OFF

[bagder]

So now you want to mention a third issue here? If you think it is a (different) curl issue I really think you should create a new issue here with all the details. You can't expect us to work on PHP issues.

[nono303]

To be clear & brief: 2 regressions observed fully related to curl 8.12 (compared to 8.11.1) having ENABLE_ARES=ON on Windows (through php_curl extension as wrapper of curl C API...)

• USE_HTTPSRR=ON ⏩ Access violation
• ENABLE_THREADED_RESOLVER=ON ⏩ curl_easy_setopt(curl, CURLOPT_DNS_SERVERS,"X.X.X.X") doesn't return CURL_OK