Daiki AMINAKA
Daiki AMINAKA
OK. I will add README Dockerfile in OSS-Fuzz side will clone msquic and copy the fuzzing program to build environment. All these will be triggered by OSS-Fuzz infra automatically
repro on Linux (doesn't happen with gdb for some reason) ```sh while :; do ./artifacts/bin/linux/x64_Release_openssl/msquictest --gtest_filter="AppData/WithSend0RttArgs1.Send0Rtt/*" --gtest_break_on_failure if [ $? -ne 0 ]; then break fi done ```
core dump seems not having richer data. below is lttng trace generator ```sh echo $@ dirprefix="msquic_lttng" num=`find ./* -maxdepth 0 -name "$dirprefix*" | wc -l` dirname=$dirprefix$num while :; do mkdir...
[quic.zip](https://github.com/microsoft/msquic/files/10725885/quic.zip)
Could repro with `QUIC_EXECUTION_PROFILE_TYPE_SCAVENGER` option. These three files are from `AppData/WithSend0RttArgs1.Send0Rtt/167` `167fail_scaven.log` happened middle of tests `AppData/WithSend0RttArgs1.Send0Rtt/*` so this doesn't include initialization phase. [167success.log](https://github.com/microsoft/msquic/files/10726949/167success.log) [167fail_scaven.log](https://github.com/microsoft/msquic/files/10726951/167fail_scaven.log) [167success_scaven.log](https://github.com/microsoft/msquic/files/10726952/167success_scaven.log)
There is DROP packet by "No matching client connection", but interesting part is its Dst and Src. This sends same port, but there is no such case in successful test...
https://github.com/microsoft/msquic/blob/335d3e96f6f8350ae5c2cf385eb2040e939e8d6c/src/platform/datapath_epoll.c#L1237-L1259 Here seems to be the root cause. Loopback might need additional check or completely disable
https://github.com/microsoft/msquic/blob/335d3e96f6f8350ae5c2cf385eb2040e939e8d6c/src/platform/datapath_epoll.c#L1233-L1237 What does this mean? I believe the error comes from client side
I tried run msquictest on ARM32 env (raspberry pi), but it immediately aborted from CxPlatWatchdog::WatchdogThreadCallback. 