Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

2118 lines
68 KiB

  1. //+-------------------------------------------------------------------------
  2. //
  3. // Microsoft Windows
  4. //
  5. // Copyright (C) Microsoft Corporation, 2000
  6. //
  7. // File: service.cpp
  8. //
  9. //--------------------------------------------------------------------------
  10. #include "pch.h"
  11. #pragma hdrstop
  12. SERVICE_STATUS gMyServiceStatus;
  13. SERVICE_STATUS_HANDLE ghMyServiceStatus;
  14. HANDLE hWorkerThread;
  15. HANDLE ghServiceFinished ; //= NULL;
  16. HANDLE ghPolicyChanged; //= NULL;
  17. HANDLE ghSettingsChanged; //= NULL;
  18. HANDLE ghActiveAdminSession ; //= NULL;
  19. HANDLE ghEngineState ; //= NULL;
  20. HANDLE ghServiceDisabled ; //= NULL;
  21. HANDLE ghNotifyClient ; //= NULL;
  22. HANDLE ghValidateCatalog ; //= NULL;
  23. HANDLE ghWorkerThreadMsgQueueCreation; //= NULL
  24. DWORD gdwWorkerThreadId = -1;
  25. CLIENT_HANDLES ghClientHandles;
  26. CLIENT_NOTIFY_DATA gClientNotifyData;
  27. DWORD gdwServiceVersion = -1;
  28. SESSION_STATUS gAdminSessions;
  29. BOOL FEnsureValidEvent(HANDLE & hEvent, BOOL fManualState, BOOL fInitialState)
  30. {
  31. hEvent = CreateEvent(NULL, // for enable/disable
  32. fManualState, // manual reset
  33. fInitialState, // initial state
  34. NULL); // event name
  35. return (NULL != hEvent);
  36. }
  37. void ServiceFinishNotify(void)
  38. {
  39. DEBUGMSG("ServiceFinishNotify() starts");
  40. if (NULL != ghMutex)
  41. {
  42. WaitForSingleObject(ghMutex, INFINITE);
  43. if (NULL != gpAUcatalog)
  44. {
  45. gpAUcatalog->CancelNQuit();
  46. }
  47. else
  48. {
  49. DEBUGMSG("No need to cancel catalag");
  50. }
  51. ReleaseMutex(ghMutex);
  52. }
  53. //Moving SetEvent to the end of the function since we could potentially have a deadlock if ServiceMain frees the resources (i.e. ghMutex is null) as soon as we call SetEvent
  54. SetEvent(ghServiceFinished);
  55. DEBUGMSG("ServiceFinishNotify() ends");
  56. }
  57. //** Returns true if the service was finished otherwise, waits dwSleepTime milliseconds
  58. //** This function assumes that the handle hServiceFinished is actually a handle to
  59. //** AUSERVICE_FINISHED_EVENT
  60. BOOL FServiceFinishedOrWait(HANDLE hServiceFinished, DWORD dwSleepTime)
  61. {
  62. DEBUGMSG("Entering FServiceFinishedOrWait dwSleepTime=%lu", dwSleepTime);
  63. DWORD dwRet = WaitForSingleObject(hServiceFinished, dwSleepTime);
  64. DEBUGMSG("Exiting FServiceFinishedOrWait");
  65. return (WAIT_OBJECT_0 == dwRet);
  66. }
  67. //utility function
  68. BOOL _IsTokenAdmin(HANDLE hToken)
  69. {
  70. static SID_IDENTIFIER_AUTHORITY sSystemSidAuthority = SECURITY_NT_AUTHORITY;
  71. BOOL fResult = FALSE;
  72. PSID pSIDLocalGroup;
  73. if (AllocateAndInitializeSid(&sSystemSidAuthority,
  74. 2,
  75. SECURITY_BUILTIN_DOMAIN_RID,
  76. DOMAIN_ALIAS_RID_ADMINS, // Local Admins
  77. 0, 0, 0, 0, 0, 0,
  78. &pSIDLocalGroup) != FALSE)
  79. {
  80. if (!CheckTokenMembership(hToken, pSIDLocalGroup, &fResult))
  81. {
  82. DEBUGMSG("Fail to check token membership with error %d", GetLastError());
  83. fResult = FALSE;
  84. }
  85. FreeSid(pSIDLocalGroup);
  86. }
  87. else
  88. {
  89. DEBUGMSG("_IsTokenAdmin fail to get AllocateAndInitializeSid with error %d", GetLastError());
  90. }
  91. return fResult;
  92. }
  93. //fixcode: return primary token instead
  94. BOOL AUGetUserToken(ULONG LogonId, PHANDLE pImpersonationToken)
  95. {
  96. BOOL fRet;
  97. HANDLE hUserToken;
  98. // _WTSQueryUserToken is defined on tscompat.cpp
  99. if (fRet = _WTSQueryUserToken(LogonId, &hUserToken))
  100. {
  101. // DEBUGMSG("WUAUENG AUGetUserToken() succeeded WTSQueryUserToken");
  102. if (!(fRet =DuplicateTokenEx(hUserToken, TOKEN_QUERY|TOKEN_DUPLICATE|TOKEN_IMPERSONATE , NULL, SecurityImpersonation, TokenImpersonation, pImpersonationToken)))
  103. {
  104. DEBUGMSG("WUAUENG AUGetUserToken() DuplicateTokenEx failed");
  105. }
  106. CloseHandle(hUserToken);
  107. }
  108. #ifdef DBG
  109. else // all failure
  110. {
  111. DEBUGMSG("WUAUENG AUGetUserToken() failed WTSQueryUserToken with session= %d, error=%d", LogonId, GetLastError());
  112. }
  113. #endif
  114. return fRet;
  115. }
  116. BOOL IsUserAUEnabledAdmin(DWORD dwSessionId)
  117. {
  118. HANDLE hImpersonationToken;
  119. BOOL fDisableWindowsUpdateAccess = TRUE;
  120. if (AUGetUserToken(dwSessionId, &hImpersonationToken))
  121. {
  122. // If user is an admin, impersonate them and steal their current user reg settings
  123. if( _IsTokenAdmin(hImpersonationToken) )
  124. {
  125. HKEY hCurrentUserKey;
  126. //Bother to check for the policy only if it is an Admin session
  127. if (!ImpersonateLoggedOnUser(hImpersonationToken))
  128. {
  129. DEBUGMSG("WUAUENG fail to ImpersonateLoggedOnUser() with error %d", GetLastError());
  130. CloseHandle(hImpersonationToken);
  131. goto done;
  132. }
  133. if(RegOpenCurrentUser(KEY_READ, &hCurrentUserKey) == ERROR_SUCCESS)
  134. {
  135. HKEY hkeyPolicy;
  136. if (ERROR_SUCCESS != RegOpenKeyEx(
  137. hCurrentUserKey,
  138. AUREGKEY_HKCU_USER_POLICY,
  139. 0,
  140. KEY_READ,
  141. &hkeyPolicy))
  142. {
  143. fDisableWindowsUpdateAccess = FALSE;
  144. }
  145. else
  146. {
  147. DWORD dwData;
  148. DWORD dwType = REG_DWORD;
  149. DWORD dwSize = sizeof(dwData);
  150. if ((ERROR_SUCCESS != RegQueryValueEx(
  151. hkeyPolicy,
  152. AUREGVALUE_DISABLE_WINDOWS_UPDATE_ACCESS,
  153. NULL,
  154. &dwType,
  155. (LPBYTE)&dwData,
  156. &dwSize)) ||
  157. (REG_DWORD != dwType) ||
  158. (1 != dwData) )
  159. {
  160. fDisableWindowsUpdateAccess = FALSE;
  161. }
  162. RegCloseKey(hkeyPolicy);
  163. }
  164. RegCloseKey(hCurrentUserKey);
  165. }
  166. RevertToSelf();
  167. }
  168. CloseHandle(hImpersonationToken);
  169. }
  170. else
  171. {
  172. DEBUGMSG("WUAUENG AUGetUserToken in AUServiceHandler failed for session= %d, error=%d", dwSessionId, GetLastError());
  173. }
  174. done:
  175. return (!fDisableWindowsUpdateAccess);
  176. }
  177. BOOL IsSession0Active()
  178. {
  179. BOOL fRet = FALSE;
  180. //DEBUGMSG("In IsSession0Active()");
  181. HWINSTA hwinsta = OpenWindowStation(_T("WinSta0"), FALSE, WINSTA_READATTRIBUTES);
  182. if (NULL == hwinsta)
  183. {
  184. DEBUGMSG("WUAUENG OpenWindowStation failed");
  185. goto Done;
  186. }
  187. DWORD dwLength;
  188. USEROBJECTFLAGS stFlags;
  189. if (GetUserObjectInformation(hwinsta, UOI_FLAGS, (void *)&stFlags, sizeof(stFlags), &dwLength)
  190. && (stFlags.dwFlags & WSF_VISIBLE))
  191. {
  192. // If there is no user associeted dwLenght is 0
  193. DWORD dwBuff;
  194. if (GetUserObjectInformation(hwinsta, UOI_USER_SID, (PVOID) &dwBuff, sizeof(DWORD), &dwLength))
  195. {
  196. fRet = dwLength > 0;
  197. }
  198. else
  199. {
  200. fRet = (ERROR_INSUFFICIENT_BUFFER == GetLastError());
  201. }
  202. }
  203. else
  204. {
  205. DEBUGMSG("WUAUENG GetUserObjectInformation failed = %d", GetLastError());
  206. }
  207. Done:
  208. if(NULL != hwinsta)
  209. {
  210. CloseWindowStation(hwinsta);
  211. }
  212. return fRet;
  213. }
  214. inline BOOL FOnlySession0WasLoggedOnBeforeServiceStarted()
  215. {
  216. /*We check for only one Sesion logged on because:
  217. 1) When Terminal Services are enabled, Session State can be WTSConnected and the session is actually
  218. logged on (active), but since Terminal Services hadn't been started before the user logged on, they
  219. didn't know and could not set the session to WTS Active and left it in WTSConnected. If there is more
  220. than one session, we don't know for sure if Session0's state is WTSConnected but really active or not,
  221. we don't want to run the risk of launching the client in an inactive session
  222. */
  223. SESSION_STATE *pSessionState;
  224. return (gAdminSessions.m_FGetSessionState(0, &pSessionState) && pSessionState->fFoundEnumerating && 1 == gAdminSessions.CSessions());
  225. }
  226. BOOL FSessionActive(DWORD dwAdminSession, WTS_CONNECTSTATE_CLASS *pWTSState)
  227. {
  228. LPTSTR pBuffer;
  229. DWORD dwBytes;
  230. WTS_CONNECTSTATE_CLASS wtsState = WTSDown;
  231. BOOL fRet = FALSE;
  232. // we might not be able to getthe TS status for the session,
  233. // so initialize WTSStatus with an invalid value (WTS Status is an enum of positive integers)
  234. if (_IsTerminalServiceRunning())
  235. {
  236. if (WTSQuerySessionInformation(WTS_CURRENT_SERVER_HANDLE, dwAdminSession, WTSConnectState,
  237. &pBuffer, &dwBytes))
  238. {
  239. wtsState = *((WTS_CONNECTSTATE_CLASS *)pBuffer);
  240. WTSFreeMemory(pBuffer);
  241. //DEBUGMSG("FSessionActive() get session state = %d for session %d", wtsState, dwAdminSession);
  242. if (WTSActive == (wtsState) || ((0 == dwAdminSession) && FOnlySession0WasLoggedOnBeforeServiceStarted()))
  243. {
  244. // DEBUGMSG("WUAUENG Active Admin Session =%d", dwAdminSession);
  245. fRet = TRUE;
  246. goto done;
  247. }
  248. }
  249. else
  250. {
  251. DEBUGMSG("FSessionActive() fail to call WTSQuerySessionInformation");
  252. }
  253. }
  254. else
  255. {
  256. if ((dwAdminSession == 0) && IsSession0Active())
  257. {
  258. //DEBUGMSG("WUAUENG Active Admin Session = 0");
  259. wtsState = WTSActive;
  260. fRet = TRUE;
  261. goto done;
  262. }
  263. }
  264. done:
  265. if (fRet && NULL != pWTSState)
  266. {
  267. *pWTSState = wtsState;
  268. }
  269. return fRet;
  270. }
  271. // This function is only called on Win2K code, and as such contains specific logic that relates to
  272. // how login/logoff are handled on win2k.
  273. BOOL IsAUValidSession(DWORD dwSessionId)
  274. {
  275. WTS_CONNECTSTATE_CLASS SessionState;
  276. // using this function only the retreive the current session status
  277. FSessionActive(dwSessionId, &SessionState);
  278. if ((SessionState == WTSActive || SessionState == WTSConnected || SessionState == WTSDisconnected) &&
  279. IsUserAUEnabledAdmin(dwSessionId))
  280. {
  281. DEBUGMSG("WUAUENG ValidateSession succeeded for session %d", dwSessionId);
  282. return TRUE;
  283. }
  284. else
  285. {
  286. DEBUGMSG("WUAUENG ValidateSession failed for session %d", dwSessionId);
  287. return FALSE;
  288. }
  289. }
  290. //** returns the first Active Admin Sesion ID available
  291. //** returns -1 if there is no Active Admin session at all
  292. //** dwIgnoreSession is the SessionID that will not be considered as a candidate
  293. //** for available admin sessions
  294. DWORD GetAllowedAdminSessionId(BOOL fGetSessionForRemindMe)
  295. {
  296. DWORD dwAdminSession;
  297. // DEBUGMSG("GetAllowedAdminSessionId() starts");
  298. //Sleep 15 seconds before we check Session Status so that we can get accurate information if there
  299. //is an Admin Logging Off or any other Session Change notification. This is because it takes a while before
  300. //the session information shows right info
  301. if (FServiceFinishedOrWait(ghServiceFinished, 15000))
  302. {
  303. return DWNO_ACTIVE_ADMIN_SESSION_SERVICE_FINISHED;
  304. }
  305. if (IsWin2K())
  306. {
  307. DEBUGMSG("WUAUENG Forcing the session cache to be rebuilt (needed on win2k as we don't track logoffs).");
  308. gAdminSessions.ValidateCachedSessions();
  309. }
  310. //if for remind later timeout, try to use the same session as last time
  311. if (fGetSessionForRemindMe && gAdminSessions.m_FGetCurrentSession(&dwAdminSession) && FSessionActive(dwAdminSession))
  312. {
  313. return dwAdminSession;
  314. }
  315. for (int nSession = 0; nSession < gAdminSessions.CSessions(); nSession++)
  316. { // get next available active session
  317. if (gAdminSessions.m_FGetNextSession(&dwAdminSession) && FSessionActive(dwAdminSession))
  318. {
  319. DEBUGMSG(" found available admin %d", dwAdminSession);
  320. goto Done;
  321. }
  322. }
  323. dwAdminSession = DWNO_ACTIVE_ADMIN_SESSION_FOUND;
  324. Done:
  325. // DEBUGMSG("GetAllowedAdminSessionId() ends");
  326. return dwAdminSession;
  327. }
  328. //return TRUE if AU client stopped.
  329. //return FALSE otherwise
  330. void AUStopClients(BOOL fWaitTillCltDone = FALSE, BOOL fRelaunch = FALSE)
  331. {
  332. if ( ghClientHandles.fClient() )
  333. {
  334. ghClientHandles.StopClients(fRelaunch);
  335. if (fWaitTillCltDone)
  336. {
  337. ghClientHandles.WaitForClientExits();
  338. }
  339. }
  340. }
  341. VOID SetActiveAdminSessionEvent()
  342. {
  343. if (NULL != ghActiveAdminSession)
  344. {
  345. DEBUGMSG("WUAUENG AUACTIVE_ADMIN_SESSION_EVENT triggered ");
  346. SetEvent(ghActiveAdminSession);
  347. }
  348. else
  349. {
  350. DEBUGMSG("WUAUENG No AUACTIVE_ADMIN_SESSION_EVENT handle settup propperly");
  351. }
  352. }
  353. BOOL FDownloadIsPaused()
  354. {
  355. DWORD dwStatus;
  356. UINT upercentage;
  357. return ((AUSTATE_DOWNLOAD_PENDING == gpState->GetState()) &&
  358. (SUCCEEDED(GetDownloadStatus(&upercentage, &dwStatus, FALSE))) &&
  359. (DWNLDSTATUS_PAUSED == dwStatus));
  360. }
  361. BOOL fSPUpgraded()
  362. {
  363. DWORD dwResetAU = 0;
  364. if (FAILED(GetRegDWordValue(_T("ResetAU"), &dwResetAU)))
  365. {
  366. dwResetAU = 0;
  367. }
  368. DeleteRegValue(_T("ResetAU"));
  369. return (1 == dwResetAU);
  370. }
  371. ///////////////////////////////////////////////////////////////////////////////////
  372. // return nothing
  373. //////////////////////////////////////////////////////////////////////////////////
  374. void ProcessInitialState(WORKER_THREAD_INIT_DATA * pinitData)
  375. {
  376. DWORD AuState;
  377. pinitData->uFirstMsg = -1;
  378. pinitData->fWaitB4Detect = FALSE;
  379. pinitData->dwWaitB4Detect = 0;
  380. // check if the system was just restored.
  381. if ( gpState->fWasSystemRestored() )
  382. {
  383. DEBUGMSG("The system was restored, going to state AUSTATE_DETECT_PENDING");
  384. AuState = AUSTATE_DETECT_PENDING;
  385. gpState->SetState(AuState);
  386. }
  387. else
  388. {
  389. AuState = gpState->GetState();
  390. }
  391. DEBUGMSG("WUAUENG Starting update cycle in state %d", gpState->GetState());
  392. // all states after Detect Pending require catalog validation
  393. switch(AuState)
  394. {
  395. case AUSTATE_OUTOFBOX:
  396. {
  397. pinitData->uFirstMsg = AUMSG_INIT;
  398. break;
  399. }
  400. case AUSTATE_NOT_CONFIGURED:
  401. break;
  402. case AUSTATE_DISABLED:
  403. if (gpState->fOptionEnabled())
  404. {
  405. gpState->SetState(AUSTATE_DETECT_PENDING);
  406. pinitData->uFirstMsg = AUMSG_DETECT;
  407. }
  408. break;
  409. case AUSTATE_DETECT_PENDING:
  410. pinitData->uFirstMsg = AUMSG_DETECT;
  411. break;
  412. case AUSTATE_DETECT_COMPLETE:
  413. case AUSTATE_DOWNLOAD_COMPLETE:
  414. if (FAILED(gpAUcatalog->Unserialize()))
  415. {
  416. DEBUGMSG("WUAUENG catalog unserializing failed. State -> Detect Pending");
  417. gpState->SetState(AUSTATE_DETECT_PENDING);
  418. pinitData->uFirstMsg = AUMSG_DETECT;
  419. break;
  420. }
  421. break;
  422. case AUSTATE_DOWNLOAD_PENDING:
  423. {
  424. if (FAILED(gpAUcatalog->Unserialize()))
  425. {
  426. DEBUGMSG("WUAUENG catalog unserializing failed. State -> Detect Pending");
  427. gpState->SetState(AUSTATE_DETECT_PENDING);
  428. pinitData->uFirstMsg = AUMSG_DETECT;
  429. break;
  430. }
  431. ResumeDownloadIfNeccesary();
  432. pinitData->uFirstMsg = AUMSG_DOWNLOAD;
  433. break;
  434. }
  435. case AUSTATE_INSTALL_PENDING:
  436. // enter this code path when restore system restore point and after reboot completed
  437. DEBUGMSG("WUAUENG in INSTALL_PENDING state, State->Detect Pending");
  438. gpState->SetState(AUSTATE_DETECT_PENDING);
  439. pinitData->uFirstMsg = AUMSG_DETECT;
  440. break;
  441. case AUSTATE_WAITING_FOR_REBOOT:
  442. {
  443. if (!fCheckRebootFlag())
  444. {
  445. //if there is no Reboot flag and the state was WAINTING_FOR_REBOOT means there was a
  446. //a reboot and now it is time to set to DETECT_PENDING but wait for random hours
  447. gpState->SetState(AUSTATE_DETECT_PENDING);
  448. pinitData->fWaitB4Detect = TRUE;
  449. pinitData->dwWaitB4Detect = RandomWaitTimeBeforeDetect();
  450. pinitData->uFirstMsg = AUMSG_DETECT;
  451. }
  452. break;
  453. }
  454. default:
  455. {
  456. DEBUGMSG("WUAUENG ERROR Startup state = %d", AuState);
  457. #ifdef DBG
  458. (void)ServiceFinishNotify();
  459. #endif
  460. break;
  461. }
  462. }
  463. DWORD dwNewState = gpState->GetState();
  464. if (fSPUpgraded() && dwNewState > AUSTATE_DETECT_PENDING )
  465. { //reset au engine after sp upgrade
  466. DEBUGMSG("AU just got upgraded during SP install, reset AU engine state ");
  467. if (AUSTATE_DISABLED != dwNewState && AUSTATE_WAITING_FOR_REBOOT != dwNewState)
  468. {
  469. CancelDownload();
  470. gpState->SetState(AUSTATE_DETECT_PENDING);
  471. pinitData->fWaitB4Detect = FALSE; //start detection right away
  472. pinitData->dwWaitB4Detect = 0;
  473. pinitData->uFirstMsg = AUMSG_DETECT;
  474. }
  475. }
  476. SetEvent(ghEngineState); //jump start workerclient
  477. return ;
  478. }
  479. DWORD WINAPI ServiceHandler(DWORD fdwControl, DWORD dwEventType, LPVOID pEventData, LPVOID /*lpContext*/)
  480. {
  481. switch(fdwControl)
  482. {
  483. case SERVICE_CONTROL_STOP:
  484. case SERVICE_CONTROL_SHUTDOWN:
  485. gMyServiceStatus.dwCurrentState = SERVICE_STOP_PENDING;
  486. if (SERVICE_CONTROL_SHUTDOWN == fdwControl)
  487. {
  488. DEBUGMSG("WUAUENG AUServiceHandler received SERVICE_CONTROL_SHUTDOWN");
  489. }
  490. else if (SERVICE_CONTROL_STOP == fdwControl)
  491. {
  492. DEBUGMSG("WUAUENG AUServiceHandler received SERVICE_CONTROL_STOP");
  493. }
  494. SetServiceStatus(ghMyServiceStatus, &gMyServiceStatus);
  495. (void)ServiceFinishNotify();
  496. break;
  497. case SERVICE_CONTROL_INTERROGATE:
  498. SetServiceStatus(ghMyServiceStatus, &gMyServiceStatus);
  499. break;
  500. //
  501. // ATT: On Win2K this case will never be called. To replace this code, we will be
  502. // subscribing to SENS (see ausens.cpp) and subscribing to logon/logoff notifications.
  503. // The SENS callbacks will call the same code it is called here for non-Win2K systems:
  504. // OnUserLogon and OnUserLogoff.
  505. // Note however that SENS will not raise notifications for CONNECT/DISCONNECTS, so
  506. // there's a change of functionality implied by this different code path.
  507. //
  508. case SERVICE_CONTROL_SESSIONCHANGE:
  509. {
  510. if (pEventData && !IsWin2K())
  511. {
  512. WTSSESSION_NOTIFICATION* pswtsi = (WTSSESSION_NOTIFICATION*)pEventData;
  513. DWORD dwSessionId = pswtsi->dwSessionId;
  514. switch (dwEventType)
  515. {
  516. case WTS_CONSOLE_CONNECT:
  517. case WTS_REMOTE_CONNECT:
  518. {
  519. DEBUGMSG("WUAUENG session %d connected via %s", dwSessionId,
  520. WTS_CONSOLE_CONNECT==dwEventType ? "console" : "remote");
  521. //check if session is cached
  522. if (gAdminSessions.m_FGetSessionState(dwSessionId, NULL))
  523. {
  524. SetActiveAdminSessionEvent();
  525. }
  526. else
  527. {
  528. if (gAdminSessions.CacheSessionIfAUEnabledAdmin(dwSessionId, FALSE))
  529. { //only add it if it is not cached and is AU enabled Admin
  530. DEBUGMSG("WUAUENG an Admin Session %d added", dwSessionId);
  531. SetActiveAdminSessionEvent();
  532. }
  533. }
  534. break;
  535. }
  536. case WTS_CONSOLE_DISCONNECT:
  537. case WTS_REMOTE_DISCONNECT:
  538. {
  539. DEBUGMSG("WUAUENG session %d disconnected via %s", dwSessionId,
  540. WTS_CONSOLE_DISCONNECT==dwEventType ? "console" : "remote");
  541. if (ghClientHandles.fClient())
  542. {
  543. DWORD dwCurAdminSessionId;
  544. if (gAdminSessions.m_FGetCurrentSession(&dwCurAdminSessionId) &&
  545. dwSessionId == dwCurAdminSessionId &&
  546. !FDownloadIsPaused())
  547. {
  548. DEBUGMSG("WUAUENG stopping client");
  549. AUStopClients(FALSE, TRUE); //non blocking
  550. }
  551. }
  552. break;
  553. }
  554. case WTS_SESSION_LOGON:
  555. {
  556. DEBUGMSG("WUAUENG session %d logged ON ", dwSessionId);
  557. if (gAdminSessions.CacheSessionIfAUEnabledAdmin(dwSessionId, FALSE))
  558. {
  559. DEBUGMSG("WUAUENG an Admin Session %d added", dwSessionId);
  560. SetActiveAdminSessionEvent();
  561. }
  562. break;
  563. }
  564. case WTS_SESSION_LOGOFF:
  565. {
  566. DEBUGMSG("WUAUENG session %d logged OFF", dwSessionId);
  567. gAdminSessions.m_FDeleteSession(dwSessionId);
  568. break;
  569. }
  570. default: /* WTS_SESSION_LOCK, WTS_SESSION_UNLOCK,WTS_SESSION_REMOTE_CONTROL*/
  571. break;
  572. }
  573. }
  574. break;
  575. }
  576. default:
  577. return ERROR_CALL_NOT_IMPLEMENTED;
  578. }
  579. return NO_ERROR ;
  580. }
  581. BOOL WaitForShell(void)
  582. {
  583. HANDLE hShellReadyEvent;
  584. UINT uCount = 0;
  585. BOOL fRet = FALSE;
  586. if (IsWin2K())
  587. {
  588. DEBUGMSG("WUAUENG WUAUSERV Ignoring WaitForShell on Win2K");
  589. fRet = FALSE; // we're not leaving because the service has finished.
  590. goto done;
  591. }
  592. while ((hShellReadyEvent = OpenEvent(SYNCHRONIZE, FALSE, TEXT("ShellReadyEvent"))) == NULL) {
  593. if ( FServiceFinishedOrWait(ghServiceFinished, dwTimeToWait(AU_TEN_SECONDS) ))
  594. {
  595. fRet = TRUE;
  596. goto done;
  597. }
  598. if (uCount++ > 6)
  599. {
  600. DEBUGMSG("ShellReadyEvent not set after one min");
  601. goto done;
  602. }
  603. }
  604. HANDLE hEvents[2] = {hShellReadyEvent, ghServiceFinished};
  605. DWORD dwRet = WaitForMultipleObjects(2, hEvents, FALSE, INFINITE);
  606. if (WAIT_OBJECT_0 + 1 == dwRet)
  607. {
  608. fRet = TRUE;
  609. }
  610. else
  611. {
  612. DEBUGMSG("WUAUENG: ShellReadyEvent kicked");
  613. }
  614. CloseHandle(hShellReadyEvent);
  615. done:
  616. return fRet;
  617. }
  618. //=======================================================================
  619. // Calculate Reminder Time
  620. //=======================================================================
  621. inline HRESULT CalculateReminderTime(DWORD *pdwSleepTime /*in secs, no prorate*/)
  622. {
  623. DWORD dwTimeOut;
  624. UINT index;
  625. *pdwSleepTime = 0;
  626. HRESULT hr = getReminderTimeout(&dwTimeOut, &index);
  627. if ( SUCCEEDED(hr) )
  628. {
  629. DWORD dwReminderState = AUSTATE_DETECT_COMPLETE;
  630. AUOPTION auopt = gpState->GetOption();
  631. DWORD dwCurrentState = gpState->GetState();
  632. getReminderState(&dwReminderState);
  633. if (dwCurrentState != dwReminderState)
  634. {
  635. // Invalidate reminder timeout
  636. hr = E_FAIL;
  637. }
  638. // bug 502380
  639. // Wake up immediately if AUOptions was changed
  640. // from 2->3 during AUSTATE_DETECT_COMPLETE,
  641. // or from 2/3->4, has AU been running or not.
  642. else if (AUOPTION_SCHEDULED == auopt.dwOption ||
  643. (AUOPTION_INSTALLONLY_NOTIFY == auopt.dwOption &&
  644. AUSTATE_DETECT_COMPLETE == dwCurrentState))
  645. {
  646. DEBUGMSG("WUAUENG reminder no longer applies");
  647. }
  648. else
  649. {
  650. *pdwSleepTime = dwTimeOut;
  651. }
  652. if (0 == *pdwSleepTime)
  653. {
  654. // reminder time is up
  655. removeReminderKeys();
  656. }
  657. }
  658. return hr;
  659. }
  660. void RebootNow()
  661. {
  662. // Set AUState to "waiting for reboot" just in case anything fails in this function
  663. DEBUGMSG("WUAUENG in AUSTATE_WAITING_FOR_REBOOT state");
  664. gpState->SetState(AUSTATE_WAITING_FOR_REBOOT);
  665. DEBUGMSG("WUAUENG initiating shutdown sequence...");
  666. HANDLE currentToken;
  667. if(OpenProcessToken(GetCurrentProcess(), TOKEN_ADJUST_PRIVILEGES | TOKEN_QUERY, &currentToken))
  668. {
  669. LUID shutdownluid;
  670. if(LookupPrivilegeValue(NULL, SE_SHUTDOWN_NAME, &shutdownluid) != 0)
  671. {
  672. BYTE OldPrivBuf[30]; //should be big enough to host one privilege entry
  673. TOKEN_PRIVILEGES privileges;
  674. ULONG cbNeeded = 0;
  675. privileges.PrivilegeCount = 1;
  676. privileges.Privileges[0].Luid = shutdownluid;
  677. privileges.Privileges[0].Attributes = SE_PRIVILEGE_ENABLED;
  678. ZeroMemory(OldPrivBuf, sizeof(OldPrivBuf));
  679. if (AdjustTokenPrivileges(currentToken, FALSE, &privileges, sizeof(OldPrivBuf), (PTOKEN_PRIVILEGES)OldPrivBuf, &cbNeeded))
  680. {
  681. if (InitiateSystemShutdown(NULL, NULL, 0, TRUE, TRUE))
  682. {
  683. DEBUGMSG("WUAUENG first reboot successfully issued");
  684. }
  685. else
  686. {
  687. DEBUGMSG("Warning: Wuaueng fail to issue first reboot with error %lu", GetLastError());
  688. }
  689. const DWORD c_dwRetryWaitTimeInMS = 10000;
  690. DWORD dwRetryCountDown = 30;
  691. DEBUGMSG("WUAUENG keep on forcing restart until service finish");
  692. while ((0 < --dwRetryCountDown) &&
  693. (WAIT_TIMEOUT == WaitForSingleObject(ghServiceFinished, c_dwRetryWaitTimeInMS)))
  694. {
  695. if (ExitWindowsEx(EWX_REBOOT | EWX_FORCE, 0))
  696. {
  697. DEBUGMSG("WUAUENG forceful reboot successfully issued");
  698. }
  699. else
  700. {
  701. DEBUGMSG("Warning: Wuaueng fail to reboot with error %lu; retry in %d secs", GetLastError(), c_dwRetryWaitTimeInMS / 1000);
  702. }
  703. }
  704. if (((PTOKEN_PRIVILEGES)OldPrivBuf)->PrivilegeCount > 0)
  705. {
  706. AdjustTokenPrivileges(currentToken, FALSE, (PTOKEN_PRIVILEGES)OldPrivBuf, 0, NULL, NULL); //restore privious privileges
  707. }
  708. }
  709. else
  710. {
  711. DEBUGMSG("Warning: wuaueng fail to adjust token previlege with error %d", GetLastError());
  712. }
  713. }
  714. else
  715. {
  716. DEBUGMSG("Warning: wuaueng fail to look up privilege value with error %lu", GetLastError());
  717. }
  718. CloseHandle(currentToken);
  719. }
  720. else
  721. {
  722. DEBUGMSG("Warning: Wuaueng fail to get process token to enable reboot with error %lu", GetLastError());
  723. }
  724. }
  725. //=======================================================================
  726. // ProcessClientFinished()
  727. //=======================================================================
  728. void ProcessClientFinished(CAUWait & wait, HANDLE hClientProcess, BOOL fAdmin)
  729. {
  730. DEBUGMSG("ProcessClientFinished");
  731. // if client returns from installing, change state.
  732. //if the client exited because there was a timeout (due to no user interaction),
  733. //make sure that the session in which it (client) was launched will not be selected again
  734. DWORD dwExitProc;
  735. BOOL fRet = GetExitCodeProcess(hClientProcess, &dwExitProc);
  736. BOOL fRebootWarningMode = ghClientHandles.fRebootWarningMode();
  737. ghClientHandles.RemoveHandle(hClientProcess);
  738. if (AUSTATE_DOWNLOAD_PENDING == gpState->GetState())
  739. {// resume job if needed after user logs off or au client torn down
  740. ResumeDownloadIfNeccesary();
  741. }
  742. if (!fRet)
  743. {
  744. DEBUGMSG("WUAUENG GetExitCodeProcess failed, last Error= %lu", GetLastError());
  745. wait.Reset();
  746. }
  747. else
  748. {
  749. DEBUGMSG("WUAUENG GetExitCodeProcess succeded, sessionId is = %d, dwExitProc is = %lu", 0 , dwExitProc);
  750. if (!fAdmin)
  751. { // for non admin, don't look at its return code
  752. DEBUGMSG("WUAUENG notice nonadmin wuauclt returned, do not look at the return code");
  753. return;
  754. }
  755. if (CDWWUAUCLT_REBOOTTIMEOUT == dwExitProc ||
  756. (((STATUS_SUCCESS == dwExitProc) ||
  757. (DBG_TERMINATE_PROCESS == dwExitProc) ||
  758. (CDWWUAUCLT_ENDSESSION == dwExitProc))
  759. && fRebootWarningMode))
  760. {
  761. DEBUGMSG("WUAUENG reboot warning client log off or time out ");
  762. // if (!ghClientHandles.fClient())
  763. // {//last reboot warning client timed out or logged off
  764. // RebootNow();
  765. // }
  766. return;
  767. }
  768. //no need to wait for other clients
  769. wait.Reset();
  770. switch(dwExitProc)
  771. {
  772. case CDWWUAUCLT_OK:
  773. {
  774. if ( AUSTATE_INSTALL_PENDING == gpState->GetState() )
  775. {
  776. DEBUGMSG("WUAUENG Install done, State->Detect Pending");
  777. gpState->SetState(AUSTATE_DETECT_PENDING);
  778. PostThreadMessage(gdwWorkerThreadId, AUMSG_POST_INSTALL, 0, 0);
  779. }
  780. break;
  781. }
  782. case CDWWUAUCLT_RELAUNCHNOW:
  783. {
  784. wait.Timeout(AUEVENT_RELAUNCH_TIMEOUT, 0);
  785. break;
  786. }
  787. case CDWWUAUCLT_RELAUNCHLATER: // sleep a while before relaunching client if asked by client
  788. {
  789. //
  790. // Fix for bug 493026
  791. // Annah: Relaunching the client was taken too long because time of wait need to be specified in seconds
  792. // (AU constants are already defined in seconds and dwWait should be in seconds).
  793. //
  794. DEBUGMSG("WUAUENG wait for 3 min before relaunching WUAUCLT");
  795. wait.Timeout(AUEVENT_RELAUNCH_TIMEOUT, AU_THREE_MINS);
  796. break;
  797. }
  798. // STATUS_SUCCESS is the exit code for wuauclt.exe on Win2k and also for some cases of NtTerminateProcess (like pskill.exe)
  799. case STATUS_SUCCESS:
  800. case DBG_TERMINATE_PROCESS:
  801. case CDWWUAUCLT_ENDSESSION: // user logs off or system shuts down
  802. {
  803. //This is the only time that the service will Set the Engine State change event.
  804. //The client was terminated by the debugger and it didn't have the chance to set the event
  805. //and it is necessesary so that this loop (fServiceFinished) doesn't get stuck
  806. //this exit code is also returned when user logs off the session
  807. if (fCheckRebootFlag())
  808. { //AU client killed while showing waiting for reboot
  809. DEBUGMSG("WUAUENG in AUSTATE_WAITING_FOR_REBOOT state");
  810. gpState->SetState(AUSTATE_WAITING_FOR_REBOOT);
  811. }
  812. else if (AUSTATE_INSTALL_PENDING == gpState->GetState())
  813. { //AU client killed while installing
  814. /*
  815. if (S_OK != (gpAUcatalog->ValidateItems(FALSE)))
  816. { //no items to install anymore
  817. ResetEngine();
  818. }
  819. else */
  820. { //show uninstall items again.
  821. gpState->SetState(AUSTATE_DOWNLOAD_COMPLETE);
  822. }
  823. }
  824. else
  825. {
  826. wait.Timeout(AUEVENT_RELAUNCH_TIMEOUT, 0);
  827. }
  828. break;
  829. }
  830. case CDWWUAUCLT_INSTALLNOW:
  831. {
  832. //user say yes to install warning dialog
  833. //launch client install via local system right away
  834. gpState->SetCltAction(AUCLT_ACTION_AUTOINSTALL);
  835. wait.Add(AUEVENT_DO_DIRECTIVE); //reenter workclient loop right away
  836. break;
  837. }
  838. case CDWWUAUCLT_REBOOTNOW:
  839. { //now in install_pending state
  840. DEBUGMSG("WUAUENG rebooting machine");
  841. AUStopClients(TRUE); //stop all clients
  842. RebootNow();
  843. break;
  844. }
  845. case CDWWUAUCLT_REBOOTLATER:
  846. {
  847. DEBUGMSG("WUAUENG change to AUSTATE_WAITING_FOR_REBOOT state");
  848. AUStopClients(TRUE); //stop all clients
  849. gpState->SetState(AUSTATE_WAITING_FOR_REBOOT);
  850. break;
  851. }
  852. case CDWWUAUCLT_REBOOTNEEDED:
  853. { //now in install_pending state
  854. DEBUGMSG("WUAUENG need to prompt user for reboot choice");
  855. gpState->SetCltAction(AUCLT_ACTION_SHOWREBOOTWARNING);
  856. wait.Add(AUEVENT_DO_DIRECTIVE); //reenter workclient loop right away
  857. break;
  858. }
  859. case CDWWUAUCLT_FATAL_ERROR:
  860. default:
  861. {
  862. (void)ServiceFinishNotify();
  863. break;
  864. }
  865. }
  866. }
  867. }
  868. #if 0
  869. inline BOOL fUserAvailable()
  870. {
  871. return (DWNO_ACTIVE_ADMIN_SESSION_FOUND != gdwAdminSessionId);
  872. }
  873. #endif
  874. void LaunchRebootWarningClient(CAUWait & wait, SESSION_STATUS & allActiveSessions)
  875. {
  876. DEBUGMSG("LaunchRebootWarningClient() starts");
  877. PROCESS_INFORMATION ProcessInfo;
  878. HANDLE hCltExitEvt;
  879. TCHAR szCmd[MAX_PATH+1];
  880. TCHAR szClientExitEvtName[100];
  881. LPTSTR lpszEnvBuf = NULL;
  882. wait.Reset();
  883. memset(&ProcessInfo, 0, sizeof(ProcessInfo));
  884. UINT ulen = GetSystemDirectory(szCmd, ARRAYSIZE(szCmd));
  885. if (0 == ulen || ulen >= ARRAYSIZE(szCmd))
  886. {
  887. DEBUGMSG("WUAUENG Could not get system directory");
  888. goto done;
  889. }
  890. const TCHAR szAUCLT[] = _T("wuauclt.exe");
  891. if (FAILED(PathCchAppend(szCmd, ARRAYSIZE(szCmd), szAUCLT)))
  892. {
  893. DEBUGMSG("WUAUENG Could not form full path to wuauclt.exe");
  894. goto done;
  895. }
  896. const size_t c_cchEnvBuf = AU_ENV_VARS::s_AUENVVARCOUNT * (2 * AU_ENV_VARS::s_AUENVVARBUFSIZE + 2) + 1;
  897. if (NULL == (lpszEnvBuf = (LPTSTR) malloc(c_cchEnvBuf * sizeof(TCHAR))))
  898. {
  899. DEBUGMSG("Fail to allocate memory for string for environment variables");
  900. goto done;
  901. }
  902. if (!ghClientHandles.CreateClientExitEvt(szClientExitEvtName, ARRAYSIZE(szClientExitEvtName)))
  903. {
  904. DEBUGMSG("Fail to create client exit event with error %d", GetLastError());
  905. goto done;
  906. }
  907. for (int nSession = 0; nSession < allActiveSessions.CSessions(); nSession++)
  908. { // get next available active session
  909. DWORD dwActiveSession;
  910. if (allActiveSessions.m_FGetNextSession(&dwActiveSession) && FSessionActive(dwActiveSession))
  911. {
  912. AU_ENV_VARS auEnvVars;
  913. HANDLE hImpersonationToken = NULL;
  914. HANDLE hUserToken = NULL;
  915. DEBUGMSG("WUAUENG launch client in session %d", dwActiveSession);
  916. if (!AUGetUserToken(dwActiveSession, &hImpersonationToken))
  917. {
  918. DEBUGMSG("WUAUENG WARNING: fails AUGetUserToken");
  919. continue;
  920. }
  921. if (!DuplicateTokenEx(hImpersonationToken, TOKEN_QUERY|TOKEN_DUPLICATE|TOKEN_ASSIGN_PRIMARY , NULL,
  922. SecurityImpersonation, TokenPrimary, &hUserToken))
  923. {
  924. DEBUGMSG("WUAUENG WARNING: Could not DuplicateTokenEx, dw=%d", GetLastError());
  925. CloseHandle(hImpersonationToken);
  926. continue;
  927. }
  928. CloseHandle(hImpersonationToken);
  929. BOOL fAUAdmin = IsUserAUEnabledAdmin(dwActiveSession);
  930. BOOL fEnableYes = (1 == allActiveSessions.CSessions()) && fAUAdmin; //only one active user and it is a AU admin
  931. BOOL fEnableNo = fAUAdmin;
  932. if (!auEnvVars.WriteOut(lpszEnvBuf, c_cchEnvBuf, TRUE, fEnableYes, fEnableNo, szClientExitEvtName))
  933. {
  934. DEBUGMSG("WUAUENG Could not write out environment variables");
  935. CloseHandle(hUserToken);
  936. continue;
  937. }
  938. LPVOID envBlock;
  939. if (!CreateEnvironmentBlock(&envBlock, hUserToken, FALSE))
  940. {
  941. DEBUGMSG("WUAUENG fail to get environment block for user");
  942. CloseHandle(hUserToken);
  943. continue;
  944. }
  945. STARTUPINFO StartupInfo;
  946. memset(&StartupInfo, 0, sizeof(StartupInfo));
  947. StartupInfo.cb = sizeof(StartupInfo);
  948. StartupInfo.lpDesktop = _T("WinSta0\\Default");
  949. if (!CreateProcessAsUser(hUserToken, szCmd, lpszEnvBuf, NULL, NULL, FALSE /*Inherit Handles*/ ,
  950. DETACHED_PROCESS|CREATE_UNICODE_ENVIRONMENT, envBlock, NULL, &StartupInfo, &ProcessInfo))
  951. {
  952. DEBUGMSG("WUAUENG Could not CreateProcessAsUser (WUAUCLT), dwRet = %d", GetLastError());
  953. DestroyEnvironmentBlock(envBlock);
  954. CloseHandle(hUserToken);
  955. continue;
  956. }
  957. DestroyEnvironmentBlock(envBlock);
  958. CloseHandle(hUserToken);
  959. DEBUGMSG("WUAUENG Created the client service (WUAUCLT)");
  960. ghClientHandles.AddHandle(ProcessInfo);
  961. wait.Add(AUEVENT_WUAUCLT_FINISHED, ProcessInfo.hProcess, fAUAdmin);
  962. }
  963. }
  964. done:
  965. wait.Timeout(AUEVENT_REBOOTWARNING_TIMEOUT, AU_FIVE_MINS + 10, FALSE); //10 secs to make sure all clients time out
  966. SafeFree(lpszEnvBuf);
  967. DEBUGMSG("LaunchRebootWarningClient() ends");
  968. return;
  969. }
  970. //=======================================================================
  971. // LaunchClient()
  972. // if no admin logged on, launch client via local system
  973. // update ghClientHandles
  974. // return S_OK if client launched
  975. // S_FALSE if no session available or service finished, *pdwSessionId indicates the reason
  976. // E_XXX for all other failures
  977. //=======================================================================
  978. HRESULT LaunchClient(IN CAUWait & wait, IN BOOL fAsLocalSystem, OUT DWORD *pdwSessionId, IN BOOL fGetSessionForRemindMe = FALSE )
  979. {
  980. // DEBUGMSG("LaunchClient");
  981. HANDLE hImpersonationToken = NULL;
  982. HANDLE hUserToken = NULL;
  983. DWORD dwAdminSessionId = DWNO_ACTIVE_ADMIN_SESSION_FOUND ;
  984. HRESULT hr = E_FAIL;
  985. wait.Reset();
  986. AUASSERT(NULL != pdwSessionId);
  987. *pdwSessionId = DWNO_ACTIVE_ADMIN_SESSION_FOUND;
  988. if (!fAsLocalSystem)
  989. { //launch client in user context
  990. dwAdminSessionId = GetAllowedAdminSessionId(fGetSessionForRemindMe);
  991. if (DWNO_ACTIVE_ADMIN_SESSION_FOUND == dwAdminSessionId ||
  992. DWNO_ACTIVE_ADMIN_SESSION_SERVICE_FINISHED == dwAdminSessionId)
  993. {
  994. DEBUGMSG("WUAUENG find no admin or service finished before launching client");
  995. hr = S_FALSE;
  996. goto done;
  997. }
  998. DEBUGMSG("WUAUENG launch client in session %d", dwAdminSessionId);
  999. if (!AUGetUserToken(dwAdminSessionId, &hImpersonationToken))
  1000. {
  1001. DEBUGMSG("WUAUENG fails AUGetUserToken");
  1002. hr = HRESULT_FROM_WIN32(GetLastError());
  1003. goto done;
  1004. }
  1005. if (!DuplicateTokenEx(hImpersonationToken, TOKEN_QUERY|TOKEN_DUPLICATE|TOKEN_ASSIGN_PRIMARY , NULL,
  1006. SecurityImpersonation, TokenPrimary, &hUserToken))
  1007. {
  1008. DEBUGMSG("WUAUENG Could not DuplicateTokenEx, dw=%d", GetLastError());
  1009. hr = HRESULT_FROM_WIN32(GetLastError());
  1010. goto done;
  1011. }
  1012. if ( WaitForShell() )
  1013. {
  1014. // service finished
  1015. dwAdminSessionId = DWNO_ACTIVE_ADMIN_SESSION_SERVICE_FINISHED ;
  1016. hr = S_FALSE;
  1017. goto done;
  1018. }
  1019. }
  1020. else
  1021. {
  1022. dwAdminSessionId = DWSYSTEM_ACCOUNT;
  1023. }
  1024. STARTUPINFO StartupInfo;
  1025. PROCESS_INFORMATION ProcessInfo;
  1026. TCHAR szCmd[MAX_PATH+1];
  1027. memset(&ProcessInfo, 0, sizeof(ProcessInfo));
  1028. memset(&StartupInfo, 0, sizeof(StartupInfo));
  1029. StartupInfo.cb = sizeof(StartupInfo);
  1030. UINT ulen = GetSystemDirectory(szCmd, ARRAYSIZE(szCmd));
  1031. if (0 == ulen)
  1032. {
  1033. DEBUGMSG("WUAUENG Could not get system directory");
  1034. hr = HRESULT_FROM_WIN32(GetLastError());
  1035. goto done;
  1036. }
  1037. if (ulen >= ARRAYSIZE(szCmd))
  1038. {
  1039. hr = HRESULT_FROM_WIN32(ERROR_INSUFFICIENT_BUFFER);
  1040. goto done;
  1041. }
  1042. const TCHAR szAUCLT[] = _T("wuauclt.exe");
  1043. if (FAILED(hr =PathCchAppend(szCmd, ARRAYSIZE(szCmd), szAUCLT)))
  1044. {
  1045. DEBUGMSG("WUAUENG Could not form full path to wuauclt.exe");
  1046. goto done;
  1047. }
  1048. ghClientHandles.ClientStateChange(); //let AU client process initial state
  1049. WaitForSingleObject(ghMutex, INFINITE);
  1050. StartupInfo.lpDesktop = _T("WinSta0\\Default");
  1051. if (fAsLocalSystem)
  1052. { //launch client via local system
  1053. DEBUGMSG("Launch client via local system"); //inherit local system's desktop
  1054. if (!CreateProcess(szCmd, NULL, NULL, NULL, FALSE, DETACHED_PROCESS, NULL, NULL, &StartupInfo, &ProcessInfo))
  1055. {
  1056. DEBUGMSG("WUAUENG Could not CreateProcess (WUAUCLT), dwRet = %d", GetLastError());
  1057. ReleaseMutex(ghMutex);
  1058. hr = HRESULT_FROM_WIN32(GetLastError());
  1059. goto done;
  1060. }
  1061. }
  1062. else
  1063. {
  1064. LPVOID envBlock = NULL;
  1065. BOOL fResult = FALSE;
  1066. CreateEnvironmentBlock(&envBlock, hUserToken, FALSE); //if fail, use NULL
  1067. fResult = CreateProcessAsUser(hUserToken, szCmd, NULL, NULL, NULL, FALSE /*Inherit Handles*/ ,
  1068. DETACHED_PROCESS|CREATE_UNICODE_ENVIRONMENT, envBlock, NULL, &StartupInfo, &ProcessInfo);
  1069. DWORD dwLastErr = GetLastError();
  1070. if (NULL != envBlock)
  1071. {
  1072. DestroyEnvironmentBlock(envBlock);
  1073. }
  1074. if (!fResult)
  1075. {
  1076. DEBUGMSG("WUAUENG Could not CreateProcessAsUser (WUAUCLT), dwRet = %d", GetLastError());
  1077. ReleaseMutex(ghMutex);
  1078. hr = HRESULT_FROM_WIN32(dwLastErr);
  1079. goto done;
  1080. }
  1081. }
  1082. DEBUGMSG("WUAUENG Created the client service (WUAUCLT)");
  1083. ghClientHandles.SetHandle(ProcessInfo, fAsLocalSystem);
  1084. ReleaseMutex(ghMutex);
  1085. wait.Add(AUEVENT_WUAUCLT_FINISHED, ProcessInfo.hProcess, TRUE);
  1086. hr = S_OK;
  1087. done:
  1088. SafeCloseHandleNULL(hImpersonationToken);
  1089. SafeCloseHandleNULL(hUserToken);
  1090. *pdwSessionId = dwAdminSessionId;
  1091. return hr;
  1092. }
  1093. void CalculateSleepTime(CAUWait & wait)
  1094. {
  1095. DWORD dwReminderSleepTime = -1; //DWORD -1 is 0xFFFFFFFF
  1096. DWORD dwSchedSleepTime = -1;
  1097. DWORD dwSleepTimes[4] = { -1, -1, -1, -1};
  1098. AUEVENT EventIds[4] = {AUEVENT_SCHEDULED_INSTALL, AUEVENT_REMINDER_TIMEOUT, AUEVENT_RELAUNCH_TIMEOUT, AUEVENT_REBOOTWARNING_TIMEOUT};
  1099. #ifdef DBG
  1100. LPSTR szEventNames[4] = {"Schedule Install", "Reminder timeout", "Relaunch timeout", "RebootWarning timeout"};
  1101. #endif
  1102. // DEBUGMSG("CalculateSleepTime starts");
  1103. if ( FAILED(CalculateReminderTime((DWORD*) &dwReminderSleepTime)) )
  1104. {
  1105. dwReminderSleepTime = -1;
  1106. }
  1107. if (gpState->fShouldScheduledInstall())
  1108. {
  1109. HRESULT hr;
  1110. if (SUCCEEDED(hr = gpState->CalculateScheduledInstallSleepTime(&dwSchedSleepTime)) )
  1111. {
  1112. if (S_FALSE == hr) // the scheduled install date has been changed
  1113. {
  1114. PostThreadMessage(gdwWorkerThreadId, AUMSG_LOG_EVENT, 0, 0);
  1115. }
  1116. }
  1117. }
  1118. dwSleepTimes[0] = dwSchedSleepTime;
  1119. dwSleepTimes[1] = dwReminderSleepTime;
  1120. dwSleepTimes[2] = (AUEVENT_RELAUNCH_TIMEOUT == wait.GetTimeoutEvent()) ? wait.GetTimeoutValue(): -1;
  1121. dwSleepTimes[3] = (AUEVENT_REBOOTWARNING_TIMEOUT == wait.GetTimeoutEvent())? wait.GetTimeoutValue(): -1;
  1122. DWORD dwLeastTimeIndex = 0;
  1123. for (int i = 0; i < ARRAYSIZE(dwSleepTimes); i++)
  1124. {
  1125. if (dwSleepTimes[i] < dwSleepTimes[dwLeastTimeIndex])
  1126. {
  1127. dwLeastTimeIndex = i;
  1128. }
  1129. }
  1130. if (-1 == dwSleepTimes[dwLeastTimeIndex])
  1131. {
  1132. wait.Timeout(AUEVENT_DUMMY, INFINITE);
  1133. }
  1134. else
  1135. {
  1136. BOOL fProrate = (AUEVENT_REBOOTWARNING_TIMEOUT != EventIds[dwLeastTimeIndex]);
  1137. wait.Timeout(EventIds[dwLeastTimeIndex], dwSleepTimes[dwLeastTimeIndex], fProrate);
  1138. #ifdef DBG
  1139. DEBUGMSG("CalculateSleepTime: next time wake up in %d secs for %s", dwSleepTimes[dwLeastTimeIndex], szEventNames[dwLeastTimeIndex]);
  1140. #endif
  1141. if ( AUEVENT_REMINDER_TIMEOUT != EventIds[dwLeastTimeIndex]
  1142. && -1 != dwSleepTimes[1])
  1143. {
  1144. removeReminderKeys();
  1145. }
  1146. }
  1147. // DEBUGMSG("CalculateSleepTime ends");
  1148. return;
  1149. }
  1150. void ResetEngine(void)
  1151. {
  1152. if ( fCheckRebootFlag() )
  1153. {
  1154. DEBUGMSG("WUAUENG in AUSTATE_WAITING_FOR_REBOOT state");
  1155. gpState->SetState(AUSTATE_WAITING_FOR_REBOOT);
  1156. }
  1157. else
  1158. {
  1159. ResetEvent(ghServiceDisabled);
  1160. CancelDownload();
  1161. gpState->SetState(AUSTATE_DETECT_PENDING);
  1162. PostThreadMessage(gdwWorkerThreadId, AUMSG_DETECT, 0, 0);
  1163. AUStopClients();
  1164. }
  1165. }
  1166. void DisableAU(void)
  1167. {
  1168. gpState->SetState(AUSTATE_DISABLED);
  1169. SetEvent(ghServiceDisabled); //intrinsticly cancel download
  1170. AUStopClients();
  1171. }
  1172. //=======================================================================
  1173. // WorkerClient
  1174. //=======================================================================
  1175. void WorkerClient(void)
  1176. {
  1177. AUEVENT eventid;
  1178. DWORD dwLastState;
  1179. CAUWait wait;
  1180. DEBUGMSG("WUAUENG Entering Worker Client");
  1181. while ( TRUE )
  1182. {
  1183. HANDLE hSignaledEvent;
  1184. BOOL fAdmin = TRUE;
  1185. CalculateSleepTime(wait);
  1186. DEBUGMSG("WUAUENG before waiting for next worker client event");
  1187. dwLastState = gpState->GetState();
  1188. if (!wait.Wait(&hSignaledEvent, &fAdmin, &eventid))
  1189. {
  1190. DEBUGMSG("WUAUENG wait.wait() failed.");
  1191. (void)ServiceFinishNotify();
  1192. goto done;
  1193. }
  1194. if ( AUEVENT_SERVICE_FINISHED == eventid )
  1195. {
  1196. AUStopClients(TRUE);
  1197. if ( fCheckRebootFlag() )
  1198. {
  1199. DEBUGMSG("WUAUENG in AUSTATE_WAITING_FOR_REBOOT state");
  1200. gpState->SetState(AUSTATE_WAITING_FOR_REBOOT);
  1201. }
  1202. goto done;
  1203. }
  1204. if (AUEVENT_POLICY_CHANGE == eventid)
  1205. {
  1206. //find out what changed
  1207. //if nothing changed, go back to the beginning of the loop
  1208. //otherwise, take different actions
  1209. enumAUPOLICYCHANGEACTION actcode;
  1210. if (S_OK == gpState->Refresh(&actcode))
  1211. {
  1212. switch (actcode)
  1213. {
  1214. case AUPOLICYCHANGE_NOOP: break;
  1215. case AUPOLICYCHANGE_RESETENGINE:
  1216. ResetEngine();
  1217. break;
  1218. case AUPOLICYCHANGE_RESETCLIENT:
  1219. ghClientHandles.ResetClient();
  1220. break;
  1221. case AUPOLICYCHANGE_DISABLE:
  1222. DisableAU();
  1223. break;
  1224. }
  1225. }
  1226. continue;
  1227. }
  1228. if (AUEVENT_SETTINGS_CHANGE == eventid)
  1229. {
  1230. //go back to begining of loop and recalculate sleep time according to the new settings
  1231. continue;
  1232. }
  1233. if (AUEVENT_REBOOTWARNING_TIMEOUT == eventid)
  1234. {
  1235. AUStopClients(); //stop all clients, non blocking
  1236. RebootNow();
  1237. wait.Reset();
  1238. continue;
  1239. }
  1240. DWORD dwState = gpState->GetState();
  1241. if ( (eventid == AUEVENT_STATE_CHANGED) && (dwState == dwLastState) )
  1242. {
  1243. DWORD dwTimeOut;
  1244. DWORD dwTimeOutState;
  1245. UINT index;
  1246. if ( SUCCEEDED(getReminderTimeout(&dwTimeOut, &index))
  1247. && SUCCEEDED(getReminderState(&dwTimeOutState)))
  1248. {
  1249. if (dwTimeOutState == dwState)
  1250. {
  1251. continue;
  1252. }
  1253. }
  1254. }
  1255. switch (dwState)
  1256. {
  1257. case AUSTATE_OUTOFBOX:
  1258. case AUSTATE_WAITING_FOR_REBOOT:
  1259. continue;
  1260. case AUSTATE_DISABLED:
  1261. CancelDownload(); //then process auclt finish event
  1262. case AUSTATE_DETECT_PENDING:
  1263. {
  1264. if ( AUEVENT_WUAUCLT_FINISHED == eventid )
  1265. {
  1266. ProcessClientFinished(wait, hSignaledEvent, TRUE);
  1267. }
  1268. continue;
  1269. }
  1270. case AUSTATE_DOWNLOAD_COMPLETE:
  1271. case AUSTATE_NOT_CONFIGURED:
  1272. case AUSTATE_DETECT_COMPLETE:
  1273. case AUSTATE_DOWNLOAD_PENDING:
  1274. case AUSTATE_INSTALL_PENDING:
  1275. {
  1276. if ( AUEVENT_WUAUCLT_FINISHED == eventid )
  1277. {
  1278. ProcessClientFinished(wait, hSignaledEvent, fAdmin);
  1279. continue;
  1280. }
  1281. BOOL fGetSessionForRemindMe = FALSE;
  1282. if ( AUEVENT_REMINDER_TIMEOUT == eventid )
  1283. {
  1284. // Reminder time is up
  1285. removeReminderKeys();
  1286. fGetSessionForRemindMe = TRUE;
  1287. }
  1288. if (AUEVENT_DO_DIRECTIVE == eventid)
  1289. {
  1290. wait.Reset(); //timeout is infinite now
  1291. DWORD dwCltAction = gpState->GetCltAction();
  1292. switch (dwCltAction)
  1293. {
  1294. case AUCLT_ACTION_AUTOINSTALL:
  1295. {
  1296. DWORD dwAdminSessionId;
  1297. if (FAILED(LaunchClient(wait, TRUE, &dwAdminSessionId)))
  1298. {
  1299. ServiceFinishNotify();
  1300. }
  1301. break;
  1302. }
  1303. case AUCLT_ACTION_SHOWREBOOTWARNING:
  1304. {
  1305. SESSION_STATUS allActiveSessions;
  1306. gpState->SetCltAction(AUCLT_ACTION_NONE); //reset
  1307. BOOL fInit = allActiveSessions.Initialize(FALSE, TRUE);
  1308. AUASSERT(fInit);
  1309. allActiveSessions.CacheExistingSessions();
  1310. if (allActiveSessions.CSessions() > 0)
  1311. {
  1312. LaunchRebootWarningClient(wait, allActiveSessions); //wait for client finish next time
  1313. }
  1314. else
  1315. {
  1316. RebootNow();
  1317. }
  1318. allActiveSessions.Clear();
  1319. break;
  1320. }
  1321. default:
  1322. #ifdef DBG
  1323. DEBUGMSG("ERROR: should not be here");
  1324. ServiceFinishNotify();
  1325. #endif
  1326. break;
  1327. }
  1328. continue;
  1329. }
  1330. if ( AUEVENT_SCHEDULED_INSTALL == eventid )
  1331. {
  1332. if ( ghClientHandles.fClient())
  1333. {
  1334. ghClientHandles.ClientShowInstallWarning();
  1335. }
  1336. else
  1337. {
  1338. gpState->SetCltAction(AUCLT_ACTION_AUTOINSTALL);
  1339. wait.Add(AUEVENT_DO_DIRECTIVE); //reenter workclient loop right away
  1340. }
  1341. continue;
  1342. }
  1343. // eventid is one of these: AUEVENT_STATE_CHANGED, AUEVENT_NEW_ADMIN_SESSION, AUEVENT_REMINDER_TIMEOUT
  1344. #ifdef DBG
  1345. AUASSERT(AUEVENT_STATE_CHANGED == eventid
  1346. ||AUEVENT_NEW_ADMIN_SESSION == eventid
  1347. ||AUEVENT_REMINDER_TIMEOUT == eventid
  1348. ||AUEVENT_RELAUNCH_TIMEOUT == eventid
  1349. ||AUEVENT_CATALOG_VALIDATED == eventid);
  1350. #endif
  1351. if (AUEVENT_RELAUNCH_TIMEOUT == eventid)
  1352. {
  1353. wait.Reset();//reset time out
  1354. }
  1355. if ( !ghClientHandles.fClient() )
  1356. {//no client process running
  1357. DEBUGMSG( "WUAUENG Service detected that the client is not running.");
  1358. if (AvailableSessions() == 0)
  1359. {
  1360. if (gpState->fShouldAutoDownload(FALSE))
  1361. { //do autodownload if appropriate
  1362. StartDownload();
  1363. continue;
  1364. }
  1365. DEBUGMSG("WUAUENG There is no Administrator Account, waiting for AUACTIVE_ADMIN_SESSION_EVENT to be triggered");
  1366. wait.Reset();
  1367. wait.Add(AUEVENT_NEW_ADMIN_SESSION);
  1368. continue;
  1369. }
  1370. if (AUEVENT_CATALOG_VALIDATED != eventid && gpState->fValidationNeededState())
  1371. {
  1372. PostThreadMessage(gdwWorkerThreadId, AUMSG_VALIDATE_CATALOG, 0, 0);
  1373. wait.Reset();
  1374. wait.Add(AUEVENT_CATALOG_VALIDATED);
  1375. DEBUGMSG("WUAUENG needs to validate catalog before launching client");
  1376. continue;
  1377. }
  1378. DEBUGMSG("Trying to launch client");
  1379. DWORD dwCltSession;
  1380. HRESULT hr = LaunchClient(wait, FALSE, &dwCltSession, fGetSessionForRemindMe);
  1381. if (S_FALSE == hr && DWNO_ACTIVE_ADMIN_SESSION_FOUND == dwCltSession)
  1382. {
  1383. DEBUGMSG("WUAUENG There is no Administrator Account, waiting for AUACTIVE_ADMIN_SESSION_EVENT to be triggered");
  1384. wait.Reset();
  1385. wait.Add(AUEVENT_NEW_ADMIN_SESSION);
  1386. continue;
  1387. }
  1388. if (FAILED(hr))
  1389. {
  1390. ServiceFinishNotify();
  1391. continue;
  1392. }
  1393. }
  1394. break;
  1395. }
  1396. default:
  1397. //What about the other states, will the service get them?
  1398. DEBUGMSG("WARNING: WUAUENG default dwState=%d", dwState);
  1399. break;
  1400. }
  1401. }
  1402. done:
  1403. DEBUGMSG("WUAUENG Exiting Worker Client");
  1404. }
  1405. DWORD WINAPI WorkerThread(void * pdata)
  1406. {
  1407. CoInitialize(NULL);
  1408. WORKER_THREAD_INIT_DATA *pInitData = (WORKER_THREAD_INIT_DATA*) pdata;
  1409. DWORD dwRet = UpdateProc(*pInitData);
  1410. if(FAILED(dwRet))
  1411. {
  1412. DEBUGMSG("WUAUENG pUpdates->m_pUpdateFunc() failed, exiting service");
  1413. (void)ServiceFinishNotify();
  1414. }
  1415. else if(dwRet == S_OK)
  1416. {
  1417. DEBUGMSG("WUAUENG Update() finished succesfully");
  1418. }
  1419. else if(dwRet == S_FALSE)
  1420. {
  1421. DEBUGMSG("WUAUENG Updates() indicated selfupdate");
  1422. (void)ServiceFinishNotify(); //service will reload new wuaueng.dll instead of exiting
  1423. }
  1424. CoUninitialize();
  1425. DEBUGMSG("WUAUENG Exiting WorkerThread");
  1426. return dwRet;
  1427. }
  1428. #if 0
  1429. #ifdef DBG
  1430. void DbgDumpSessions(void)
  1431. {
  1432. const LPSTR TSStates[] = {
  1433. "Active", "Connected", "ConnectQuery", "Shadow",
  1434. "Disconnected", "Idle", "Listen", "Reset", "Down", "Init"};
  1435. PWTS_SESSION_INFO pSessionInfo = NULL;
  1436. DWORD dwCount;
  1437. DEBUGMSG("DumpSessions starts....");
  1438. if (WTSEnumerateSessions(WTS_CURRENT_SERVER_HANDLE, 0, 1, &pSessionInfo, &dwCount))
  1439. {
  1440. DEBUGMSG("Sessions Count= %d",dwCount);
  1441. for (DWORD dwSession = 0; dwSession < dwCount; dwSession++)
  1442. {
  1443. WTS_SESSION_INFO SessionInfo = pSessionInfo[dwSession];
  1444. DEBUGMSG(" SessionId =%d, State Id =%d, State = %s",SessionInfo.SessionId, SessionInfo.State, TSStates[SessionInfo.State]);
  1445. }
  1446. }
  1447. DEBUGMSG("DumpSessions end");
  1448. }
  1449. DWORD WINAPI DbgThread(void * pdata)
  1450. {
  1451. DEBUGMSG("WUAUENG Starting Debug thread");
  1452. CoInitialize(NULL);
  1453. while (true)
  1454. {
  1455. DbgDumpSessions();
  1456. if (FServiceFinishedOrWait(ghServiceFinished, 5000))
  1457. {
  1458. DEBUGMSG("DbgThread noticed service finished");
  1459. break;
  1460. }
  1461. }
  1462. CoUninitialize();
  1463. DEBUGMSG("WUAUENG Exiting Debug Thread");
  1464. return 0;
  1465. }
  1466. #endif
  1467. #endif
  1468. #ifdef DBG
  1469. //=======================================================================
  1470. //
  1471. // DebugResetAutoPilot
  1472. //
  1473. // Check to see if we want AU to run by itself.
  1474. //
  1475. //=======================================================================
  1476. void DebugResetAutoPilot(void)
  1477. {
  1478. DWORD dwAutoPilot;
  1479. if ( SUCCEEDED(GetRegDWordValue(TEXT("AutoPilot"), &dwAutoPilot)) &&
  1480. (0 != dwAutoPilot) )
  1481. {
  1482. SetRegDWordValue(TEXT("AutoPilotIteration"), 0);
  1483. }
  1484. }
  1485. #endif // DBG
  1486. BOOL AllocateAUSysResource(BOOL *pfGPNotificationRegistered)
  1487. {
  1488. BOOL fOk = FALSE;
  1489. //Create WindowsUpdate Directory if it doesnt already exist
  1490. if(!CreateWUDirectory())
  1491. {
  1492. goto lCleanUp;
  1493. }
  1494. if (NULL == (ghMutex = CreateMutex(NULL, FALSE, NULL)))
  1495. {
  1496. DEBUGMSG("WUAUENG fail to create global mutex");
  1497. goto lCleanUp;
  1498. }
  1499. // Create ghServiceFinished
  1500. if (!FEnsureValidEvent(ghServiceFinished, TRUE, FALSE))
  1501. {
  1502. DEBUGMSG("WUAUENG FEnsureValidEvent for AUSERVICE_FINISHED_EVENT failed");
  1503. ghServiceFinished = NULL;
  1504. goto lCleanUp;
  1505. }
  1506. if (!FEnsureValidEvent(ghSettingsChanged, FALSE, FALSE)) //auto
  1507. {
  1508. DEBUGMSG("WUAUENG FEnsureValidEvent for settings change event failed");
  1509. ghSettingsChanged = NULL;
  1510. goto lCleanUp;
  1511. }
  1512. if (!FEnsureValidEvent(ghPolicyChanged, FALSE, FALSE)) //auto
  1513. {
  1514. DEBUGMSG("WUAUENG FEnsureValidEvent for policy change event failed");
  1515. ghPolicyChanged = NULL;
  1516. goto lCleanUp;
  1517. }
  1518. if (!(*pfGPNotificationRegistered = RegisterGPNotification(ghPolicyChanged, TRUE)))
  1519. {
  1520. DEBUGMSG("WUAUENG fail to register group policy notification");
  1521. goto lCleanUp;
  1522. }
  1523. // Create ghActiveAdminSession
  1524. if (!FEnsureValidEvent(ghActiveAdminSession, FALSE, TRUE))
  1525. {
  1526. DEBUGMSG("WUAUENG FEnsureValidEvent for AUACTIVE_ADMIN_SESSION_EVENT failed");
  1527. ghActiveAdminSession = NULL;
  1528. goto lCleanUp;
  1529. }
  1530. // Create ghEngineState
  1531. if (!FEnsureValidEvent(ghEngineState, FALSE, FALSE))
  1532. {
  1533. DEBUGMSG("WUAUENG FEnsureValidEvent for AUENGINE_STATE_CHANGE_EVENT failed");
  1534. ghEngineState = NULL;
  1535. goto lCleanUp;
  1536. }
  1537. //Create ghServiceDisabled
  1538. //fixcode: ghServiceDisabled could really be removed
  1539. if (!FEnsureValidEvent(ghServiceDisabled, TRUE, FALSE))
  1540. {
  1541. DEBUGMSG("WUAUENG FEnsureValidEvent for ghServiceDisabled failed\n");
  1542. ghServiceDisabled = NULL;
  1543. goto lCleanUp;
  1544. }
  1545. // Create ghNotifyClient
  1546. if (!FEnsureValidEvent(ghNotifyClient, FALSE, FALSE))
  1547. {
  1548. DEBUGMSG("WUAUENG FEnsureValidEvent for ghNotifyClient failed\n");
  1549. ghNotifyClient = NULL;
  1550. goto lCleanUp;
  1551. }
  1552. // Create ghValidateCatalog
  1553. if (!FEnsureValidEvent(ghValidateCatalog, FALSE, FALSE))
  1554. {
  1555. DEBUGMSG("WUAUENG FEnsureValidEvent for ghValidateCatalog failed\n");
  1556. ghValidateCatalog = NULL;
  1557. goto lCleanUp;
  1558. }
  1559. if (!FEnsureValidEvent(ghWorkerThreadMsgQueueCreation, FALSE,FALSE))
  1560. {
  1561. DEBUGMSG("WUAUENG FEnsureValidEvent for ghWorkerThreadMsgQueueCreation failed");
  1562. ghWorkerThreadMsgQueueCreation = NULL;
  1563. goto lCleanUp;
  1564. }
  1565. fOk = TRUE;
  1566. lCleanUp:
  1567. return fOk;
  1568. }
  1569. void ReleaseAUSysResource(BOOL fGPNotificationRegistered)
  1570. {
  1571. SafeCloseHandleNULL(ghMutex);
  1572. SafeCloseHandleNULL(ghServiceFinished);
  1573. SafeCloseHandleNULL(ghActiveAdminSession);
  1574. SafeCloseHandleNULL(ghEngineState);
  1575. SafeCloseHandleNULL(ghServiceDisabled);
  1576. SafeCloseHandleNULL(ghNotifyClient);
  1577. SafeCloseHandleNULL(ghValidateCatalog);
  1578. SafeCloseHandleNULL(ghSettingsChanged);
  1579. SafeCloseHandleNULL(ghWorkerThreadMsgQueueCreation);
  1580. if (NULL != ghPolicyChanged)
  1581. {
  1582. if ( fGPNotificationRegistered)
  1583. {
  1584. UnregisterGPNotification(ghPolicyChanged); //handled closed as well
  1585. }
  1586. SafeCloseHandleNULL(ghPolicyChanged);
  1587. }
  1588. }
  1589. ///////////////////////////////////////////////////////////////////////////////////////////////////
  1590. // return S_FALSE when selfupdate happened before wizard is shown
  1591. // return S_OK if AU last state processing is done successfully
  1592. //
  1593. HRESULT InitAUEngine(WORKER_THREAD_INIT_DATA *pinitData)
  1594. {
  1595. HRESULT hr;
  1596. if (FAILED(hr = HrCreateNewCatalog()))
  1597. {
  1598. DEBUGMSG("Fail to create new catalog with error %#lx", hr);
  1599. goto done;
  1600. }
  1601. if (!AUCatalog::InitStaticVars())
  1602. {
  1603. DEBUGMSG("OUT OF MEMORY and Fail to initialize catalog static variable");
  1604. hr = E_OUTOFMEMORY;
  1605. goto done;
  1606. }
  1607. ProcessInitialState(pinitData);
  1608. srand(GetTickCount());
  1609. done:
  1610. return hr;
  1611. }
  1612. void UninitAUEngine(void)
  1613. {
  1614. AUCatalog::UninitStaticVars();
  1615. SafeDeleteNULL(gpAUcatalog);
  1616. }
  1617. BOOL WINAPI RegisterServiceVersion(DWORD dwServiceVersion, DWORD *pdwEngineVersion)
  1618. {
  1619. BOOL fIsServiceVersionSupported = TRUE;
  1620. if(NULL == pdwEngineVersion)
  1621. return FALSE;
  1622. gdwServiceVersion = dwServiceVersion;
  1623. *pdwEngineVersion = AUENGINE_VERSION;
  1624. switch(gdwServiceVersion)
  1625. {
  1626. case AUSRV_VERSION_1:
  1627. break;
  1628. default:
  1629. fIsServiceVersionSupported = FALSE;
  1630. break;
  1631. }
  1632. return fIsServiceVersionSupported;
  1633. }
  1634. BOOL WINAPI GetEngineStatusInfo (void *pEngineInfo)
  1635. {
  1636. BOOL fIsServiceVersionSupported = TRUE;
  1637. AUENGINEINFO_VER_1 *pEngInfo1 = NULL;
  1638. if(pEngineInfo == NULL)
  1639. return FALSE;
  1640. switch(gdwServiceVersion)
  1641. {
  1642. case AUSRV_VERSION_1:
  1643. pEngInfo1 = (AUENGINEINFO_VER_1*)pEngineInfo;
  1644. pEngInfo1->hServiceStatus = ghMyServiceStatus;
  1645. pEngInfo1->serviceStatus = gMyServiceStatus;
  1646. break;
  1647. default:
  1648. //If service version is -1 or any unsupported version
  1649. fIsServiceVersionSupported = FALSE;
  1650. break;
  1651. }
  1652. return fIsServiceVersionSupported;
  1653. }
  1654. HRESULT WINAPI ServiceMain(DWORD /*dwNumServicesArg*/,
  1655. LPWSTR * /*lpServiceArgVectors*/,
  1656. AUSERVICEHANDLER pfnServiceHandler,
  1657. BOOL fJustSelfUpdated)
  1658. {
  1659. HMODULE hmodTransport = NULL;
  1660. BOOL fUpdateObjectRegistered = FALSE;
  1661. BOOL fGPNotificationRegistered = FALSE;
  1662. BOOL fCOMInited = FALSE;
  1663. Updates *pUpdates = NULL;
  1664. HRESULT hr = S_OK;
  1665. #ifdef DBG
  1666. DebugResetAutoPilot();
  1667. #endif
  1668. if (!gAdminSessions.Initialize(TRUE, FALSE))
  1669. {
  1670. DEBUGMSG("FAILED to initialize gAdminSessions");
  1671. hr = E_FAIL;
  1672. goto lCleanUp;
  1673. }
  1674. if (NULL == (g_pGlobalSchemaKeys= new CSchemaKeys))
  1675. {
  1676. hr = E_OUTOFMEMORY;
  1677. goto lCleanUp;
  1678. }
  1679. ZeroMemory(&gMyServiceStatus, sizeof(gMyServiceStatus));
  1680. ghMyServiceStatus = RegisterServiceCtrlHandlerEx(AU_SERVICE_NAME, pfnServiceHandler, NULL);
  1681. if(ghMyServiceStatus == (SERVICE_STATUS_HANDLE)0)
  1682. {
  1683. DEBUGMSG("FAILED to retrieve the service handle");
  1684. hr = E_FAIL;
  1685. goto lCleanUp;
  1686. }
  1687. DEBUGMSG("WUAUENG Service handler Registered");
  1688. gMyServiceStatus.dwServiceType = SERVICE_WIN32_SHARE_PROCESS;
  1689. gMyServiceStatus.dwCurrentState = SERVICE_START_PENDING;
  1690. gMyServiceStatus.dwCheckPoint = 1;
  1691. gMyServiceStatus.dwWaitHint = 15000;
  1692. if (IsWin2K())
  1693. {
  1694. gMyServiceStatus.dwControlsAccepted = SERVICE_ACCEPT_STOP | SERVICE_ACCEPT_SHUTDOWN;
  1695. }
  1696. else
  1697. {
  1698. gMyServiceStatus.dwControlsAccepted = SERVICE_ACCEPT_STOP | SERVICE_ACCEPT_SHUTDOWN | SERVICE_ACCEPT_SESSIONCHANGE;
  1699. }
  1700. // when RegisterServiceCtrlHandler is called, SCM will initialize the status to be
  1701. // SERVICE_START_PENDING and checkpoint==0. So increment this to let it know
  1702. // that we're making progress.
  1703. SetServiceStatus(ghMyServiceStatus, &gMyServiceStatus);
  1704. DEBUGMSG("WUAUENG service status set to SERVICE_START_PENDING");
  1705. //if need to exit service for some particuliar reason, e.g. during setup, exit here
  1706. // Initialization
  1707. fCOMInited = SUCCEEDED(CoInitializeEx(NULL, COINIT_MULTITHREADED));
  1708. //
  1709. // fix for security bug 563069 -- annah
  1710. // Set Security for COM in Win2k as the default is not IDENTIFY
  1711. //
  1712. if (IsWin2K())
  1713. {
  1714. hr = CoInitializeSecurity(
  1715. NULL, // pSecDesc
  1716. -1, // cAuthSvc
  1717. NULL, // asAuthSvc
  1718. NULL, // pReserved
  1719. RPC_C_AUTHN_LEVEL_PKT, // dwAuthnLevel
  1720. RPC_C_IMP_LEVEL_IDENTIFY, // dwImpLevel
  1721. NULL, // pReserved2
  1722. EOAC_NO_CUSTOM_MARSHAL | EOAC_DISABLE_AAA,
  1723. NULL );
  1724. // it is possible that svchost already set the security or another thread in this process,
  1725. // so we don't want to fail if we're just late.
  1726. if (FAILED(hr) && hr != RPC_E_TOO_LATE)
  1727. {
  1728. DEBUGMSG("WUAUENG Failed in call to CoInitializeSecurity");
  1729. goto lCleanUp;
  1730. }
  1731. }
  1732. if (NULL == (pUpdates = new Updates()))
  1733. {
  1734. hr = E_OUTOFMEMORY;
  1735. goto lCleanUp;
  1736. }
  1737. DWORD dwClassToken;
  1738. ITypeLib *pUpdatesTypeLib;
  1739. //fixcode: this needs to be done in setup code
  1740. if ( FAILED(hr = LoadTypeLibEx(_T("wuaueng.dll"), REGKIND_REGISTER, &pUpdatesTypeLib)) )
  1741. {
  1742. goto lCleanUp;
  1743. }
  1744. pUpdatesTypeLib->Release();
  1745. if ( FAILED(hr = CoRegisterClassObject(__uuidof(Updates),
  1746. pUpdates,
  1747. CLSCTX_LOCAL_SERVER,
  1748. REGCLS_MULTIPLEUSE,
  1749. &dwClassToken)) )
  1750. {
  1751. goto lCleanUp;
  1752. }
  1753. fUpdateObjectRegistered = TRUE;
  1754. DEBUGMSG("WUAUENG Update class object Registered");
  1755. ghClientHandles.InitHandle();
  1756. if (!AllocateAUSysResource(&fGPNotificationRegistered))
  1757. {
  1758. hr = E_FAIL;
  1759. goto lCleanUp;
  1760. }
  1761. DEBUGMSG("WUAUENG group policy notification registered");
  1762. gMyServiceStatus.dwCurrentState = SERVICE_RUNNING;
  1763. gMyServiceStatus.dwCheckPoint = 0;
  1764. gMyServiceStatus.dwWaitHint = 0;
  1765. SetServiceStatus(ghMyServiceStatus, &gMyServiceStatus);
  1766. DEBUGMSG("Setting status to SERVICE_RUNNING");
  1767. if ( FAILED(hr = CAUState::HrCreateState()) )
  1768. {
  1769. goto lCleanUp;
  1770. }
  1771. if ( fJustSelfUpdated )
  1772. {
  1773. TCHAR szOldDll[MAX_PATH+1];
  1774. gPingStatus.PingSelfUpdate(TRUE, URLLOGSTATUS_Success, 0);
  1775. // if we just self updated, delete the old wuaueng.bak
  1776. UINT ulen = GetSystemDirectory(szOldDll, ARRAYSIZE(szOldDll));
  1777. if (0 == ulen || ulen >= ARRAYSIZE(szOldDll))
  1778. {
  1779. DEBUGMSG("WUAUENG fail to get system directory");
  1780. goto lCleanUp;
  1781. }
  1782. if (FAILED(PathCchAppend(szOldDll, ARRAYSIZE(szOldDll), _T("wuaueng.bak"))) ||
  1783. !DeleteFile(szOldDll))
  1784. {
  1785. DEBUGMSG("WUAUENG couldn't delete unused %S", szOldDll);
  1786. }
  1787. }
  1788. DEBUGMSG("WUAUENG Service Main sleeping first 60 seconds");
  1789. // Sleep 60 seconds before doing anything
  1790. if (FServiceFinishedOrWait(ghServiceFinished, dwTimeToWait(AU_ONE_MIN)))
  1791. {
  1792. DEBUGMSG("WUAUENG Service Stopping or Shutdown in first %d seconds", AU_ONE_MIN);
  1793. goto lCleanUp;
  1794. }
  1795. //
  1796. // If this is win2k, we will be receiving logon/logoff notifications through SENS, not SCM.
  1797. // We need to subscribe to the events during initialization, then.
  1798. //
  1799. if (IsWin2K())
  1800. {
  1801. DEBUGMSG("WUAUENG Activating SENS notifications");
  1802. hr = ActivateSensLogonNotification();
  1803. if (FAILED(hr))
  1804. {
  1805. DEBUGMSG("WUAUENG Service failed to activate logon notifications... Error code is %x. Aborting.", hr);
  1806. goto lCleanUp;
  1807. }
  1808. }
  1809. gAdminSessions.CacheExistingSessions();
  1810. DEBUGMSG("Svc Worker thread enabled, beginning update process");
  1811. // an optimiziation- load winhttp51.dll here so we don't keep loading &
  1812. // unloading it later as needed cuz constant loading / unloading dlls
  1813. // can cause perf / memory leak issues on certain platforms.
  1814. // In theory, we should just bail if this fails because we only want to
  1815. // proceed if we're going to use winhttp.dll
  1816. hmodTransport = LoadLibraryFromSystemDir(c_szWinHttpDll);
  1817. WORKER_THREAD_INIT_DATA initData;
  1818. if (FAILED(hr = InitAUEngine(&initData)))
  1819. { //selfupdated or error
  1820. goto lCleanUp;
  1821. }
  1822. hWorkerThread = CreateThread(NULL, 0, (LPTHREAD_START_ROUTINE)WorkerThread, (LPVOID)&initData, 0, &gdwWorkerThreadId);
  1823. DEBUGMSG("WUAUENG wait for worker thread to create its message queue ......");
  1824. WaitForSingleObject(ghWorkerThreadMsgQueueCreation, INFINITE);
  1825. (void)WorkerClient();
  1826. DWORD dwRet = WaitForSingleObject(hWorkerThread, // we can't stop until hWorkerThread exits
  1827. INFINITE);
  1828. gdwWorkerThreadId = -1;
  1829. if ( WAIT_OBJECT_0 != dwRet ||
  1830. !GetExitCodeThread(hWorkerThread, (LPDWORD)&hr /* the DWORD is actually an HRESULT */)
  1831. || (E_FAIL == hr) )
  1832. {
  1833. DEBUGMSG("Worker thread returned a failure, WaitForSingleObject() failed or we couldn't get its exit code");
  1834. hr = E_FAIL;
  1835. }
  1836. else
  1837. {
  1838. DEBUGMSG("Svc Worker thread returned, ret=%#lx", hr);
  1839. }
  1840. lCleanUp:
  1841. UninitAUEngine();
  1842. if (hmodTransport != NULL)
  1843. FreeLibrary(hmodTransport);
  1844. if (fUpdateObjectRegistered)
  1845. {
  1846. CoRevokeClassObject(dwClassToken);
  1847. }
  1848. ReleaseAUSysResource(fGPNotificationRegistered);
  1849. SafeDelete(pUpdates);
  1850. SafeDeleteNULL(gpState);
  1851. if (IsWin2K())
  1852. {
  1853. DEBUGMSG("WUAUENG Deactivating SENS notifications");
  1854. DeactivateSensLogonNotification();
  1855. }
  1856. gAdminSessions.Clear();
  1857. if (fCOMInited)
  1858. {
  1859. CoUninitialize();
  1860. }
  1861. SafeDelete(g_pGlobalSchemaKeys);
  1862. CleanupDownloadLib();
  1863. //If it's an old wuauserv version, stop the service
  1864. if ( S_FALSE != hr && gdwServiceVersion == -1)
  1865. {
  1866. gMyServiceStatus.dwCurrentState = SERVICE_STOPPED;
  1867. //gMyServiceStatus.dwCheckPoint = 0;
  1868. //gMyServiceStatus.dwWaitHint = 0;
  1869. SetServiceStatus(ghMyServiceStatus, &gMyServiceStatus);
  1870. }
  1871. else
  1872. { //selfupdate succeed
  1873. //PingStatus::ms_ServicePingSelfUpdateStatus(PING_STATUS_CODE_SELFUPDATE_PENDING);
  1874. }
  1875. DEBUGMSG("WUAUENG ServiceMain exits. Error code is %x", hr);
  1876. return hr;
  1877. }