Hi
I have working setup for AV minifilter HLK testing on win2016server_controller/win10client
I created new setup on win2022server_controller/win11_24H2_client
Selecting AV Feature lists 22 tests, 20 of them passed.
2 failed tests are "Installable File System Filter Test" and "Antivirus Installable File System Filter Test"
Both failing in phase "Configure system" and also in "Restore System", no test actually done.
I compared HLKSvc logs of win10 working well with this 24H2.
Naive approach of grepping for Failure, Error etc just showed that very same partial/intermediate failures are present in both systems.
Difference is at some point in the log where
win10
4008 9816 2025:1:28 8:26:0:202 Total: 1 Pass : 2 Fail : 0 NotRun : 0 Warning : 0 NotApplicable : 0
win11
4020 7456 2025:1:29 7:42:26:452 Total: 1 Pass : 0 Fail : 2 NotRun : 0 Warning : 0 NotApplicable : 0
As the other intermediate errors are present in both files I tend to blame it on the new set of test settings present in win11 and missing on win10.
4020 7624 2025:1:29 6:38:22:826 CJob::FillParameters : Loading Parameter "LogDriverVerifierEvents" = "TRUE"
4020 7624 2025:1:29 6:38:22:826 CJob::FillParameters : Loading Parameter "LogDriverVerifierEventsAsFailure" = "FALSE"
These are novelty in the logs.I would gladly disable them completely and not rely on interpretation of LogDriverVerifierEventsAsFailure
& LogDriverVerifierEvents
.
Are you please experiencing similar problems with recent HLK and 24H2?
I dont see actual problem reported in the logs which would not be present on win10, for example:
4008 8848 2025:1:28 8:25:47:123 Warn: FnExit: CheckHB: It is local computer name or there are 0 computers registered File=sdktools\dtm\wttbuild\coresys\client\hb\hb.cpp, Line=599
4008 8848 2025:1:28 8:25:47:123 Error: 0x57, The parameter is incorrect. FnExit: AddComputer: bad param File=sdktools\dtm\wttbuild\coresys\client\hb\hb.cpp Line=650
4008 8848 2025:1:28 8:25:47:123 Error: 0x57, The parameter is incorrect. Failed in CHeartBeat::AddComputer () File=sdktools\dtm\wttbuild\coresys\client\hb\hb.cpp Line=703
4008 9816 2025:1:28 8:26:0:342 Error: 0x8201aaac, Error 0x8201aaac CExecutionTask::InnerLogFileCopy()::(null)::CAUSE:Copying File "C:\HLK\JobsWorkingDir\Tasks\WTTJobRun1FD02674-51DD-EF11-96D1-005056A1653C\ifscfg.exe.wtl.trace" Fails File=sdktools\dtm\wttbuild\coresys\client\executiontask\executiontask.cpp Line=2067
4008 9816 2025:1:28 8:26:0:342 Error: 0x80070002, The system cannot find the file specified. FindFileAndCopy()::(null)::CAUSE:Cannot Find Pattern "C:\HLK\JobsWorkingDir\Tasks\WTTJobRun1FD02674-51DD-EF11-96D1-005056A1653C\ifscfg.exe.wtl.trace" File=sdktools\dtm\wttbuild\coresys\client\eautil\eautil.cpp Line=715
4008 9816 2025:1:28 8:26:0:342 Error: 0x82015856, Error 0x82015856 CKeyEvaluator::ExpandString()::(null)::CAUSE:CKeyEvaluator::ExpandString : Parameter [Admin_Pwd] not Found...will Keep it as it is File=sdktools\dtm\wttbuild\coresys\client\keyevaluator\keyevaluator.cpp Line=324
4008 8848 2025:1:28 8:26:0:342 CJob::ExecuteCategory : Woken up From Sleep..."Configure system" Task Must have Completed
... and alike, all copied from the log of win10 successfully testing system.
Thanks for reading and hints
Juraj