Release 1.5.29.
[wine] / programs / services / services.c
1 /*
2  * Services - controls services keeps track of their state
3  *
4  * Copyright 2007 Google (Mikolaj Zalewski)
5  *
6  * This library is free software; you can redistribute it and/or
7  * modify it under the terms of the GNU Lesser General Public
8  * License as published by the Free Software Foundation; either
9  * version 2.1 of the License, or (at your option) any later version.
10  *
11  * This library is distributed in the hope that it will be useful,
12  * but WITHOUT ANY WARRANTY; without even the implied warranty of
13  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
14  * Lesser General Public License for more details.
15  *
16  * You should have received a copy of the GNU Lesser General Public
17  * License along with this library; if not, write to the Free Software
18  * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA
19  */
20
21 #define WIN32_LEAN_AND_MEAN
22
23 #include <stdarg.h>
24 #include <windows.h>
25 #include <winsvc.h>
26 #include <rpc.h>
27 #include <userenv.h>
28
29 #include "wine/unicode.h"
30 #include "wine/debug.h"
31 #include "svcctl.h"
32
33 #include "services.h"
34
35 #define MAX_SERVICE_NAME 260
36
37 WINE_DEFAULT_DEBUG_CHANNEL(service);
38
39 HANDLE g_hStartedEvent;
40 struct scmdatabase *active_database;
41
42 DWORD service_pipe_timeout = 10000;
43 DWORD service_kill_timeout = 60000;
44 static DWORD default_preshutdown_timeout = 180000;
45 static void *env = NULL;
46
47 static const int is_win64 = (sizeof(void *) > sizeof(int));
48
49 static const WCHAR SZ_LOCAL_SYSTEM[] = {'L','o','c','a','l','S','y','s','t','e','m',0};
50
51 /* Registry constants */
52 static const WCHAR SZ_SERVICES_KEY[] = { 'S','y','s','t','e','m','\\',
53       'C','u','r','r','e','n','t','C','o','n','t','r','o','l','S','e','t','\\',
54       'S','e','r','v','i','c','e','s',0 };
55
56 /* Service key values names */
57 static const WCHAR SZ_DISPLAY_NAME[]      = {'D','i','s','p','l','a','y','N','a','m','e',0 };
58 static const WCHAR SZ_TYPE[]              = {'T','y','p','e',0 };
59 static const WCHAR SZ_START[]             = {'S','t','a','r','t',0 };
60 static const WCHAR SZ_ERROR[]             = {'E','r','r','o','r','C','o','n','t','r','o','l',0 };
61 static const WCHAR SZ_IMAGE_PATH[]        = {'I','m','a','g','e','P','a','t','h',0};
62 static const WCHAR SZ_GROUP[]             = {'G','r','o','u','p',0};
63 static const WCHAR SZ_DEPEND_ON_SERVICE[] = {'D','e','p','e','n','d','O','n','S','e','r','v','i','c','e',0};
64 static const WCHAR SZ_DEPEND_ON_GROUP[]   = {'D','e','p','e','n','d','O','n','G','r','o','u','p',0};
65 static const WCHAR SZ_OBJECT_NAME[]       = {'O','b','j','e','c','t','N','a','m','e',0};
66 static const WCHAR SZ_TAG[]               = {'T','a','g',0};
67 static const WCHAR SZ_DESCRIPTION[]       = {'D','e','s','c','r','i','p','t','i','o','n',0};
68 static const WCHAR SZ_PRESHUTDOWN[]       = {'P','r','e','s','h','u','t','d','o','w','n','T','i','m','e','o','u','t',0};
69
70
71 DWORD service_create(LPCWSTR name, struct service_entry **entry)
72 {
73     *entry = HeapAlloc(GetProcessHeap(), HEAP_ZERO_MEMORY, sizeof(**entry));
74     if (!*entry)
75         return ERROR_NOT_ENOUGH_SERVER_MEMORY;
76     (*entry)->name = strdupW(name);
77     if (!(*entry)->name)
78     {
79         HeapFree(GetProcessHeap(), 0, *entry);
80         return ERROR_NOT_ENOUGH_SERVER_MEMORY;
81     }
82     (*entry)->control_pipe = INVALID_HANDLE_VALUE;
83     (*entry)->status.dwCurrentState = SERVICE_STOPPED;
84     (*entry)->status.dwWin32ExitCode = ERROR_SERVICE_NEVER_STARTED;
85     (*entry)->preshutdown_timeout = default_preshutdown_timeout;
86     /* all other fields are zero */
87     return ERROR_SUCCESS;
88 }
89
90 void free_service_entry(struct service_entry *entry)
91 {
92     HeapFree(GetProcessHeap(), 0, entry->name);
93     HeapFree(GetProcessHeap(), 0, entry->config.lpBinaryPathName);
94     HeapFree(GetProcessHeap(), 0, entry->config.lpDependencies);
95     HeapFree(GetProcessHeap(), 0, entry->config.lpLoadOrderGroup);
96     HeapFree(GetProcessHeap(), 0, entry->config.lpServiceStartName);
97     HeapFree(GetProcessHeap(), 0, entry->config.lpDisplayName);
98     HeapFree(GetProcessHeap(), 0, entry->description);
99     HeapFree(GetProcessHeap(), 0, entry->dependOnServices);
100     HeapFree(GetProcessHeap(), 0, entry->dependOnGroups);
101     CloseHandle(entry->process);
102     CloseHandle(entry->control_mutex);
103     CloseHandle(entry->control_pipe);
104     CloseHandle(entry->overlapped_event);
105     CloseHandle(entry->status_changed_event);
106     HeapFree(GetProcessHeap(), 0, entry);
107 }
108
109 static DWORD load_service_config(HKEY hKey, struct service_entry *entry)
110 {
111     DWORD err;
112     WCHAR *wptr;
113
114     if ((err = load_reg_string(hKey, SZ_IMAGE_PATH,   TRUE, &entry->config.lpBinaryPathName)) != 0)
115         return err;
116     if ((err = load_reg_string(hKey, SZ_GROUP,        0,    &entry->config.lpLoadOrderGroup)) != 0)
117         return err;
118     if ((err = load_reg_string(hKey, SZ_OBJECT_NAME,  TRUE, &entry->config.lpServiceStartName)) != 0)
119         return err;
120     if ((err = load_reg_string(hKey, SZ_DISPLAY_NAME, 0,    &entry->config.lpDisplayName)) != 0)
121         return err;
122     if ((err = load_reg_string(hKey, SZ_DESCRIPTION,  0,    &entry->description)) != 0)
123         return err;
124     if ((err = load_reg_multisz(hKey, SZ_DEPEND_ON_SERVICE, TRUE, &entry->dependOnServices)) != 0)
125         return err;
126     if ((err = load_reg_multisz(hKey, SZ_DEPEND_ON_GROUP, FALSE, &entry->dependOnGroups)) != 0)
127         return err;
128
129     if ((err = load_reg_dword(hKey, SZ_TYPE,  &entry->config.dwServiceType)) != 0)
130         return err;
131     if ((err = load_reg_dword(hKey, SZ_START, &entry->config.dwStartType)) != 0)
132         return err;
133     if ((err = load_reg_dword(hKey, SZ_ERROR, &entry->config.dwErrorControl)) != 0)
134         return err;
135     if ((err = load_reg_dword(hKey, SZ_TAG,   &entry->config.dwTagId)) != 0)
136         return err;
137     if ((err = load_reg_dword(hKey, SZ_PRESHUTDOWN, &entry->preshutdown_timeout)) != 0)
138         return err;
139
140     WINE_TRACE("Image path           = %s\n", wine_dbgstr_w(entry->config.lpBinaryPathName) );
141     WINE_TRACE("Group                = %s\n", wine_dbgstr_w(entry->config.lpLoadOrderGroup) );
142     WINE_TRACE("Service account name = %s\n", wine_dbgstr_w(entry->config.lpServiceStartName) );
143     WINE_TRACE("Display name         = %s\n", wine_dbgstr_w(entry->config.lpDisplayName) );
144     WINE_TRACE("Service dependencies : %s\n", entry->dependOnServices[0] ? "" : "(none)");
145     for (wptr = entry->dependOnServices; *wptr; wptr += strlenW(wptr) + 1)
146         WINE_TRACE("    * %s\n", wine_dbgstr_w(wptr));
147     WINE_TRACE("Group dependencies   : %s\n", entry->dependOnGroups[0] ? "" : "(none)");
148     for (wptr = entry->dependOnGroups; *wptr; wptr += strlenW(wptr) + 1)
149         WINE_TRACE("    * %s\n", wine_dbgstr_w(wptr));
150
151     return ERROR_SUCCESS;
152 }
153
154 static DWORD reg_set_string_value(HKEY hKey, LPCWSTR value_name, LPCWSTR string)
155 {
156     if (!string)
157     {
158         DWORD err;
159         err = RegDeleteValueW(hKey, value_name);
160         if (err != ERROR_FILE_NOT_FOUND)
161             return err;
162
163         return ERROR_SUCCESS;
164     }
165
166     return RegSetValueExW(hKey, value_name, 0, REG_SZ, (const BYTE*)string, sizeof(WCHAR)*(strlenW(string) + 1));
167 }
168
169 static DWORD reg_set_multisz_value(HKEY hKey, LPCWSTR value_name, LPCWSTR string)
170 {
171     const WCHAR *ptr;
172
173     if (!string)
174     {
175         DWORD err;
176         err = RegDeleteValueW(hKey, value_name);
177         if (err != ERROR_FILE_NOT_FOUND)
178             return err;
179
180         return ERROR_SUCCESS;
181     }
182
183     ptr = string;
184     while (*ptr) ptr += strlenW(ptr) + 1;
185     return RegSetValueExW(hKey, value_name, 0, REG_MULTI_SZ, (const BYTE*)string, sizeof(WCHAR)*(ptr - string + 1));
186 }
187
188 DWORD save_service_config(struct service_entry *entry)
189 {
190     DWORD err;
191     HKEY hKey = NULL;
192
193     err = RegCreateKeyW(entry->db->root_key, entry->name, &hKey);
194     if (err != ERROR_SUCCESS)
195         goto cleanup;
196
197     if ((err = reg_set_string_value(hKey, SZ_DISPLAY_NAME, entry->config.lpDisplayName)) != 0)
198         goto cleanup;
199     if ((err = reg_set_string_value(hKey, SZ_IMAGE_PATH, entry->config.lpBinaryPathName)) != 0)
200         goto cleanup;
201     if ((err = reg_set_string_value(hKey, SZ_GROUP, entry->config.lpLoadOrderGroup)) != 0)
202         goto cleanup;
203     if ((err = reg_set_string_value(hKey, SZ_OBJECT_NAME, entry->config.lpServiceStartName)) != 0)
204         goto cleanup;
205     if ((err = reg_set_string_value(hKey, SZ_DESCRIPTION, entry->description)) != 0)
206         goto cleanup;
207     if ((err = reg_set_multisz_value(hKey, SZ_DEPEND_ON_SERVICE, entry->dependOnServices)) != 0)
208         goto cleanup;
209     if ((err = reg_set_multisz_value(hKey, SZ_DEPEND_ON_GROUP, entry->dependOnGroups)) != 0)
210         goto cleanup;
211     if ((err = RegSetValueExW(hKey, SZ_START, 0, REG_DWORD, (LPBYTE)&entry->config.dwStartType, sizeof(DWORD))) != 0)
212         goto cleanup;
213     if ((err = RegSetValueExW(hKey, SZ_ERROR, 0, REG_DWORD, (LPBYTE)&entry->config.dwErrorControl, sizeof(DWORD))) != 0)
214         goto cleanup;
215     if ((err = RegSetValueExW(hKey, SZ_TYPE, 0, REG_DWORD, (LPBYTE)&entry->config.dwServiceType, sizeof(DWORD))) != 0)
216         goto cleanup;
217     if ((err = RegSetValueExW(hKey, SZ_PRESHUTDOWN, 0, REG_DWORD, (LPBYTE)&entry->preshutdown_timeout, sizeof(DWORD))) != 0)
218         goto cleanup;
219
220     if (entry->config.dwTagId)
221         err = RegSetValueExW(hKey, SZ_TAG, 0, REG_DWORD, (LPBYTE)&entry->config.dwTagId, sizeof(DWORD));
222     else
223         err = RegDeleteValueW(hKey, SZ_TAG);
224
225     if (err != 0 && err != ERROR_FILE_NOT_FOUND)
226         goto cleanup;
227
228     err = ERROR_SUCCESS;
229 cleanup:
230     RegCloseKey(hKey);
231     return err;
232 }
233
234 DWORD scmdatabase_add_service(struct scmdatabase *db, struct service_entry *service)
235 {
236     int err;
237     service->db = db;
238     if ((err = save_service_config(service)) != ERROR_SUCCESS)
239     {
240         WINE_ERR("Couldn't store service configuration: error %u\n", err);
241         return ERROR_GEN_FAILURE;
242     }
243
244     list_add_tail(&db->services, &service->entry);
245     return ERROR_SUCCESS;
246 }
247
248 DWORD scmdatabase_remove_service(struct scmdatabase *db, struct service_entry *service)
249 {
250     int err;
251
252     err = RegDeleteTreeW(db->root_key, service->name);
253
254     if (err != 0)
255         return err;
256
257     list_remove(&service->entry);
258     service->entry.next = service->entry.prev = NULL;
259     return ERROR_SUCCESS;
260 }
261
262 static void scmdatabase_autostart_services(struct scmdatabase *db)
263 {
264     struct service_entry **services_list;
265     unsigned int i = 0;
266     unsigned int size = 32;
267     struct service_entry *service;
268
269     services_list = HeapAlloc(GetProcessHeap(), 0, size * sizeof(services_list[0]));
270     if (!services_list)
271         return;
272
273     scmdatabase_lock_shared(db);
274
275     LIST_FOR_EACH_ENTRY(service, &db->services, struct service_entry, entry)
276     {
277         if (service->config.dwStartType == SERVICE_BOOT_START ||
278             service->config.dwStartType == SERVICE_SYSTEM_START ||
279             service->config.dwStartType == SERVICE_AUTO_START)
280         {
281             if (i+1 >= size)
282             {
283                 struct service_entry **slist_new;
284                 size *= 2;
285                 slist_new = HeapReAlloc(GetProcessHeap(), 0, services_list, size * sizeof(services_list[0]));
286                 if (!slist_new)
287                     break;
288                 services_list = slist_new;
289             }
290             services_list[i] = service;
291             service->ref_count++;
292             i++;
293         }
294     }
295
296     scmdatabase_unlock(db);
297
298     size = i;
299     for (i = 0; i < size; i++)
300     {
301         DWORD err;
302         service = services_list[i];
303         err = service_start(service, 0, NULL);
304         if (err != ERROR_SUCCESS)
305             WINE_FIXME("Auto-start service %s failed to start: %d\n",
306                        wine_dbgstr_w(service->name), err);
307         release_service(service);
308     }
309
310     HeapFree(GetProcessHeap(), 0, services_list);
311 }
312
313 static void scmdatabase_wait_terminate(struct scmdatabase *db)
314 {
315     struct service_entry *service;
316     BOOL run = TRUE;
317
318     scmdatabase_lock_shared(db);
319     while(run)
320     {
321         run = FALSE;
322         LIST_FOR_EACH_ENTRY(service, &db->services, struct service_entry, entry)
323         {
324             if(service->process)
325             {
326                 scmdatabase_unlock(db);
327                 WaitForSingleObject(service->process, INFINITE);
328                 scmdatabase_lock_shared(db);
329                 CloseHandle(service->process);
330                 service->process = NULL;
331                 run = TRUE;
332                 break;
333             }
334         }
335     }
336     scmdatabase_unlock(db);
337 }
338
339 BOOL validate_service_name(LPCWSTR name)
340 {
341     return (name && name[0] && !strchrW(name, '/') && !strchrW(name, '\\'));
342 }
343
344 BOOL validate_service_config(struct service_entry *entry)
345 {
346     if (entry->config.dwServiceType & SERVICE_WIN32 && (entry->config.lpBinaryPathName == NULL || !entry->config.lpBinaryPathName[0]))
347     {
348         WINE_ERR("Service %s is Win32 but has no image path set\n", wine_dbgstr_w(entry->name));
349         return FALSE;
350     }
351
352     switch (entry->config.dwServiceType)
353     {
354     case SERVICE_KERNEL_DRIVER:
355     case SERVICE_FILE_SYSTEM_DRIVER:
356     case SERVICE_WIN32_OWN_PROCESS:
357     case SERVICE_WIN32_SHARE_PROCESS:
358         /* No problem */
359         break;
360     case SERVICE_WIN32_OWN_PROCESS | SERVICE_INTERACTIVE_PROCESS:
361     case SERVICE_WIN32_SHARE_PROCESS | SERVICE_INTERACTIVE_PROCESS:
362         /* These can be only run as LocalSystem */
363         if (entry->config.lpServiceStartName && strcmpiW(entry->config.lpServiceStartName, SZ_LOCAL_SYSTEM) != 0)
364         {
365             WINE_ERR("Service %s is interactive but has a start name\n", wine_dbgstr_w(entry->name));
366             return FALSE;
367         }
368         break;
369     default:
370         WINE_ERR("Service %s has an unknown service type (0x%x)\n", wine_dbgstr_w(entry->name), entry->config.dwServiceType);
371         return FALSE;
372     }
373
374     /* StartType can only be a single value (if several values are mixed the result is probably not what was intended) */
375     if (entry->config.dwStartType > SERVICE_DISABLED)
376     {
377         WINE_ERR("Service %s has an unknown start type\n", wine_dbgstr_w(entry->name));
378         return FALSE;
379     }
380
381     /* SERVICE_BOOT_START and SERVICE_SYSTEM_START are only allowed for driver services */
382     if (((entry->config.dwStartType == SERVICE_BOOT_START) || (entry->config.dwStartType == SERVICE_SYSTEM_START)) &&
383         ((entry->config.dwServiceType & SERVICE_WIN32_OWN_PROCESS) || (entry->config.dwServiceType & SERVICE_WIN32_SHARE_PROCESS)))
384     {
385         WINE_ERR("Service %s - SERVICE_BOOT_START and SERVICE_SYSTEM_START are only allowed for driver services\n", wine_dbgstr_w(entry->name));
386         return FALSE;
387     }
388
389     if (entry->config.lpServiceStartName == NULL)
390         entry->config.lpServiceStartName = strdupW(SZ_LOCAL_SYSTEM);
391
392     return TRUE;
393 }
394
395
396 struct service_entry *scmdatabase_find_service(struct scmdatabase *db, LPCWSTR name)
397 {
398     struct service_entry *service;
399
400     LIST_FOR_EACH_ENTRY(service, &db->services, struct service_entry, entry)
401     {
402         if (strcmpiW(name, service->name) == 0)
403             return service;
404     }
405
406     return NULL;
407 }
408
409 struct service_entry *scmdatabase_find_service_by_displayname(struct scmdatabase *db, LPCWSTR name)
410 {
411     struct service_entry *service;
412
413     LIST_FOR_EACH_ENTRY(service, &db->services, struct service_entry, entry)
414     {
415         if (service->config.lpDisplayName && strcmpiW(name, service->config.lpDisplayName) == 0)
416             return service;
417     }
418
419     return NULL;
420 }
421
422 void release_service(struct service_entry *service)
423 {
424     if (InterlockedDecrement(&service->ref_count) == 0 && is_marked_for_delete(service))
425         free_service_entry(service);
426 }
427
428 static DWORD scmdatabase_create(struct scmdatabase **db)
429 {
430     DWORD err;
431
432     *db = HeapAlloc(GetProcessHeap(), 0, sizeof(**db));
433     if (!*db)
434         return ERROR_NOT_ENOUGH_SERVER_MEMORY;
435
436     (*db)->service_start_lock = FALSE;
437     list_init(&(*db)->services);
438
439     InitializeCriticalSection(&(*db)->cs);
440     (*db)->cs.DebugInfo->Spare[0] = (DWORD_PTR)(__FILE__ ": scmdatabase");
441
442     err = RegCreateKeyExW(HKEY_LOCAL_MACHINE, SZ_SERVICES_KEY, 0, NULL,
443                           REG_OPTION_NON_VOLATILE, MAXIMUM_ALLOWED, NULL,
444                           &(*db)->root_key, NULL);
445     if (err != ERROR_SUCCESS)
446         HeapFree(GetProcessHeap(), 0, *db);
447
448     return err;
449 }
450
451 static void scmdatabase_destroy(struct scmdatabase *db)
452 {
453     RegCloseKey(db->root_key);
454     db->cs.DebugInfo->Spare[0] = 0;
455     DeleteCriticalSection(&db->cs);
456     HeapFree(GetProcessHeap(), 0, db);
457 }
458
459 static DWORD scmdatabase_load_services(struct scmdatabase *db)
460 {
461     DWORD err;
462     int i;
463
464     for (i = 0; TRUE; i++)
465     {
466         WCHAR szName[MAX_SERVICE_NAME];
467         struct service_entry *entry;
468         HKEY hServiceKey;
469
470         err = RegEnumKeyW(db->root_key, i, szName, MAX_SERVICE_NAME);
471         if (err == ERROR_NO_MORE_ITEMS)
472             break;
473
474         if (err != 0)
475         {
476             WINE_ERR("Error %d reading key %d name - skipping\n", err, i);
477             continue;
478         }
479
480         err = service_create(szName, &entry);
481         if (err != ERROR_SUCCESS)
482             break;
483
484         WINE_TRACE("Loading service %s\n", wine_dbgstr_w(szName));
485         err = RegOpenKeyExW(db->root_key, szName, 0, KEY_READ, &hServiceKey);
486         if (err == ERROR_SUCCESS)
487         {
488             err = load_service_config(hServiceKey, entry);
489             RegCloseKey(hServiceKey);
490         }
491
492         if (err != ERROR_SUCCESS)
493         {
494             WINE_ERR("Error %d reading registry key for service %s - skipping\n", err, wine_dbgstr_w(szName));
495             free_service_entry(entry);
496             continue;
497         }
498
499         if (entry->config.dwServiceType == 0)
500         {
501             /* Maybe an application only wrote some configuration in the service key. Continue silently */
502             WINE_TRACE("Even the service type not set for service %s - skipping\n", wine_dbgstr_w(szName));
503             free_service_entry(entry);
504             continue;
505         }
506
507         if (!validate_service_config(entry))
508         {
509             WINE_ERR("Invalid configuration of service %s - skipping\n", wine_dbgstr_w(szName));
510             free_service_entry(entry);
511             continue;
512         }
513
514         entry->status.dwServiceType = entry->config.dwServiceType;
515         entry->db = db;
516
517         list_add_tail(&db->services, &entry->entry);
518     }
519     return ERROR_SUCCESS;
520 }
521
522 DWORD scmdatabase_lock_startup(struct scmdatabase *db)
523 {
524     if (InterlockedCompareExchange(&db->service_start_lock, TRUE, FALSE))
525         return ERROR_SERVICE_DATABASE_LOCKED;
526     return ERROR_SUCCESS;
527 }
528
529 void scmdatabase_unlock_startup(struct scmdatabase *db)
530 {
531     InterlockedCompareExchange(&db->service_start_lock, FALSE, TRUE);
532 }
533
534 void scmdatabase_lock_shared(struct scmdatabase *db)
535 {
536     EnterCriticalSection(&db->cs);
537 }
538
539 void scmdatabase_lock_exclusive(struct scmdatabase *db)
540 {
541     EnterCriticalSection(&db->cs);
542 }
543
544 void scmdatabase_unlock(struct scmdatabase *db)
545 {
546     LeaveCriticalSection(&db->cs);
547 }
548
549 void service_lock_shared(struct service_entry *service)
550 {
551     EnterCriticalSection(&service->db->cs);
552 }
553
554 void service_lock_exclusive(struct service_entry *service)
555 {
556     EnterCriticalSection(&service->db->cs);
557 }
558
559 void service_unlock(struct service_entry *service)
560 {
561     LeaveCriticalSection(&service->db->cs);
562 }
563
564 /* only one service started at a time, so there is no race on the registry
565  * value here */
566 static LPWSTR service_get_pipe_name(void)
567 {
568     static const WCHAR format[] = { '\\','\\','.','\\','p','i','p','e','\\',
569         'n','e','t','\\','N','t','C','o','n','t','r','o','l','P','i','p','e','%','u',0};
570     static const WCHAR service_current_key_str[] = { 'S','Y','S','T','E','M','\\',
571         'C','u','r','r','e','n','t','C','o','n','t','r','o','l','S','e','t','\\',
572         'C','o','n','t','r','o','l','\\',
573         'S','e','r','v','i','c','e','C','u','r','r','e','n','t',0};
574     LPWSTR name;
575     DWORD len;
576     HKEY service_current_key;
577     DWORD service_current = -1;
578     LONG ret;
579     DWORD type;
580
581     ret = RegCreateKeyExW(HKEY_LOCAL_MACHINE, service_current_key_str, 0,
582         NULL, REG_OPTION_VOLATILE, KEY_SET_VALUE | KEY_QUERY_VALUE, NULL,
583         &service_current_key, NULL);
584     if (ret != ERROR_SUCCESS)
585         return NULL;
586     len = sizeof(service_current);
587     ret = RegQueryValueExW(service_current_key, NULL, NULL, &type,
588         (BYTE *)&service_current, &len);
589     if ((ret == ERROR_SUCCESS && type == REG_DWORD) || ret == ERROR_FILE_NOT_FOUND)
590     {
591         service_current++;
592         RegSetValueExW(service_current_key, NULL, 0, REG_DWORD,
593             (BYTE *)&service_current, sizeof(service_current));
594     }
595     RegCloseKey(service_current_key);
596     if ((ret != ERROR_SUCCESS || type != REG_DWORD) && (ret != ERROR_FILE_NOT_FOUND))
597         return NULL;
598     len = sizeof(format)/sizeof(WCHAR) + 10 /* strlenW("4294967295") */;
599     name = HeapAlloc(GetProcessHeap(), 0, len * sizeof(WCHAR));
600     if (!name)
601         return NULL;
602     snprintfW(name, len, format, service_current);
603     return name;
604 }
605
606 static DWORD service_start_process(struct service_entry *service_entry, HANDLE *process)
607 {
608     PROCESS_INFORMATION pi;
609     STARTUPINFOW si;
610     LPWSTR path = NULL;
611     DWORD size;
612     BOOL r;
613
614     service_lock_exclusive(service_entry);
615
616     if (!env)
617     {
618         HANDLE htok;
619
620         if (OpenProcessToken(GetCurrentProcess(), TOKEN_QUERY|TOKEN_DUPLICATE, &htok))
621             CreateEnvironmentBlock(&env, htok, FALSE);
622
623         if (!env)
624             WINE_ERR("failed to create services environment\n");
625     }
626
627     size = ExpandEnvironmentStringsW(service_entry->config.lpBinaryPathName,NULL,0);
628     path = HeapAlloc(GetProcessHeap(),0,size*sizeof(WCHAR));
629     if (!path)
630     {
631         service_unlock(service_entry);
632         return ERROR_NOT_ENOUGH_SERVER_MEMORY;
633     }
634     ExpandEnvironmentStringsW(service_entry->config.lpBinaryPathName,path,size);
635
636     if (service_entry->config.dwServiceType == SERVICE_KERNEL_DRIVER)
637     {
638         static const WCHAR winedeviceW[] = {'\\','w','i','n','e','d','e','v','i','c','e','.','e','x','e',' ',0};
639         WCHAR system_dir[MAX_PATH];
640         DWORD type, len;
641
642         GetSystemDirectoryW( system_dir, MAX_PATH );
643         if (is_win64)
644         {
645             if (!GetBinaryTypeW( path, &type ))
646             {
647                 HeapFree( GetProcessHeap(), 0, path );
648                 service_unlock(service_entry);
649                 return GetLastError();
650             }
651             if (type == SCS_32BIT_BINARY) GetSystemWow64DirectoryW( system_dir, MAX_PATH );
652         }
653
654         len = strlenW( system_dir ) + sizeof(winedeviceW)/sizeof(WCHAR) + strlenW(service_entry->name);
655         HeapFree( GetProcessHeap(), 0, path );
656         if (!(path = HeapAlloc( GetProcessHeap(), 0, len * sizeof(WCHAR) )))
657         {
658             service_unlock(service_entry);
659             return ERROR_NOT_ENOUGH_SERVER_MEMORY;
660         }
661         lstrcpyW( path, system_dir );
662         lstrcatW( path, winedeviceW );
663         lstrcatW( path, service_entry->name );
664     }
665
666     ZeroMemory(&si, sizeof(STARTUPINFOW));
667     si.cb = sizeof(STARTUPINFOW);
668     if (!(service_entry->config.dwServiceType & SERVICE_INTERACTIVE_PROCESS))
669     {
670         static WCHAR desktopW[] = {'_','_','w','i','n','e','s','e','r','v','i','c','e','_','w','i','n','s','t','a','t','i','o','n','\\','D','e','f','a','u','l','t',0};
671         si.lpDesktop = desktopW;
672     }
673
674     service_entry->status.dwCurrentState = SERVICE_START_PENDING;
675
676     service_unlock(service_entry);
677
678     r = CreateProcessW(NULL, path, NULL, NULL, FALSE, CREATE_UNICODE_ENVIRONMENT, env, NULL, &si, &pi);
679     HeapFree(GetProcessHeap(),0,path);
680     if (!r)
681     {
682         service_lock_exclusive(service_entry);
683         service_entry->status.dwCurrentState = SERVICE_STOPPED;
684         service_unlock(service_entry);
685         return GetLastError();
686     }
687
688     service_entry->status.dwProcessId = pi.dwProcessId;
689     service_entry->process = pi.hProcess;
690     *process = pi.hProcess;
691     CloseHandle( pi.hThread );
692
693     return ERROR_SUCCESS;
694 }
695
696 static DWORD service_wait_for_startup(struct service_entry *service_entry, HANDLE process_handle)
697 {
698     WINE_TRACE("%p\n", service_entry);
699
700     for (;;)
701     {
702         DWORD dwCurrentStatus;
703         HANDLE handles[2] = { service_entry->status_changed_event, process_handle };
704         DWORD ret;
705         ret = WaitForMultipleObjects( 2, handles, FALSE, service_pipe_timeout );
706         if (ret != WAIT_OBJECT_0)
707             return ERROR_SERVICE_REQUEST_TIMEOUT;
708         service_lock_shared(service_entry);
709         dwCurrentStatus = service_entry->status.dwCurrentState;
710         service_unlock(service_entry);
711         if (dwCurrentStatus == SERVICE_START_PENDING)
712         {
713             WINE_TRACE("Service changed its status to SERVICE_START_PENDING\n");
714             return ERROR_SUCCESS;
715         }
716         else if (dwCurrentStatus == SERVICE_RUNNING)
717         {
718             WINE_TRACE("Service started successfully\n");
719             return ERROR_SUCCESS;
720         }
721         if (dwCurrentStatus != SERVICE_START_PENDING)
722             return ERROR_SERVICE_REQUEST_TIMEOUT;
723     }
724 }
725
726 /******************************************************************************
727  * service_send_start_message
728  */
729 static BOOL service_send_start_message(struct service_entry *service, HANDLE process_handle,
730                                        LPCWSTR *argv, DWORD argc)
731 {
732     OVERLAPPED overlapped;
733     DWORD i, len, result;
734     service_start_info *ssi;
735     LPWSTR p;
736     BOOL r;
737
738     WINE_TRACE("%s %p %d\n", wine_dbgstr_w(service->name), argv, argc);
739
740     overlapped.hEvent = service->overlapped_event;
741     if (!ConnectNamedPipe(service->control_pipe, &overlapped))
742     {
743         if (GetLastError() == ERROR_IO_PENDING)
744         {
745             HANDLE handles[2];
746             handles[0] = service->overlapped_event;
747             handles[1] = process_handle;
748             if (WaitForMultipleObjects( 2, handles, FALSE, service_pipe_timeout ) != WAIT_OBJECT_0)
749                 CancelIo( service->control_pipe );
750             if (!HasOverlappedCompleted( &overlapped ))
751             {
752                 WINE_ERR( "service %s failed to start\n", wine_dbgstr_w( service->name ));
753                 return FALSE;
754             }
755         }
756         else if (GetLastError() != ERROR_PIPE_CONNECTED)
757         {
758             WINE_ERR("pipe connect failed\n");
759             return FALSE;
760         }
761     }
762
763     /* calculate how much space do we need to send the startup info */
764     len = strlenW(service->name) + 1;
765     for (i=0; i<argc; i++)
766         len += strlenW(argv[i])+1;
767     len++;
768
769     ssi = HeapAlloc(GetProcessHeap(),0,FIELD_OFFSET(service_start_info, data[len]));
770     ssi->cmd = WINESERV_STARTINFO;
771     ssi->control = 0;
772     ssi->total_size = FIELD_OFFSET(service_start_info, data[len]);
773     ssi->name_size = strlenW(service->name) + 1;
774     strcpyW( ssi->data, service->name );
775
776     /* copy service args into a single buffer*/
777     p = &ssi->data[ssi->name_size];
778     for (i=0; i<argc; i++)
779     {
780         strcpyW(p, argv[i]);
781         p += strlenW(p) + 1;
782     }
783     *p=0;
784
785     r = service_send_command( service, service->control_pipe, ssi, ssi->total_size, &result );
786     if (r && result)
787     {
788         SetLastError(result);
789         r = FALSE;
790     }
791
792     HeapFree(GetProcessHeap(),0,ssi);
793
794     return r;
795 }
796
797 DWORD service_start(struct service_entry *service, DWORD service_argc, LPCWSTR *service_argv)
798 {
799     DWORD err;
800     LPWSTR name;
801     HANDLE process_handle = NULL;
802
803     err = scmdatabase_lock_startup(service->db);
804     if (err != ERROR_SUCCESS)
805         return err;
806
807     if (WaitForSingleObject(service->process, 0) == WAIT_TIMEOUT)
808     {
809         scmdatabase_unlock_startup(service->db);
810         return ERROR_SERVICE_ALREADY_RUNNING;
811     }
812
813     CloseHandle(service->control_pipe);
814     service->control_mutex = CreateMutexW(NULL, TRUE, NULL);
815
816     if (!service->status_changed_event)
817         service->status_changed_event = CreateEventW(NULL, FALSE, FALSE, NULL);
818     if (!service->overlapped_event)
819         service->overlapped_event = CreateEventW(NULL, TRUE, FALSE, NULL);
820
821     name = service_get_pipe_name();
822     service->control_pipe = CreateNamedPipeW(name, PIPE_ACCESS_DUPLEX | FILE_FLAG_OVERLAPPED,
823                   PIPE_TYPE_BYTE|PIPE_WAIT, 1, 256, 256, 10000, NULL );
824     HeapFree(GetProcessHeap(), 0, name);
825     if (service->control_pipe==INVALID_HANDLE_VALUE)
826     {
827         WINE_ERR("failed to create pipe for %s, error = %d\n",
828             wine_dbgstr_w(service->name), GetLastError());
829         err = GetLastError();
830     }
831     else
832     {
833         err = service_start_process(service, &process_handle);
834         if (err == ERROR_SUCCESS)
835         {
836             if (!service_send_start_message(service, process_handle, service_argv, service_argc))
837                 err = ERROR_SERVICE_REQUEST_TIMEOUT;
838         }
839
840         if (err == ERROR_SUCCESS)
841             err = service_wait_for_startup(service, process_handle);
842     }
843
844     if (err == ERROR_SUCCESS)
845         ReleaseMutex(service->control_mutex);
846     else
847         service_terminate(service);
848     scmdatabase_unlock_startup(service->db);
849
850     WINE_TRACE("returning %d\n", err);
851
852     return err;
853 }
854
855 void service_terminate(struct service_entry *service)
856 {
857     service_lock_exclusive(service);
858     TerminateProcess(service->process, 0);
859     CloseHandle(service->process);
860     service->process = NULL;
861     CloseHandle(service->status_changed_event);
862     service->status_changed_event = NULL;
863     CloseHandle(service->control_mutex);
864     service->control_mutex = NULL;
865     CloseHandle(service->control_pipe);
866     service->control_pipe = INVALID_HANDLE_VALUE;
867
868     service->status.dwProcessId = 0;
869     service->status.dwCurrentState = SERVICE_STOPPED;
870     service_unlock(service);
871 }
872
873 static void load_registry_parameters(void)
874 {
875     static const WCHAR controlW[] =
876         { 'S','y','s','t','e','m','\\',
877           'C','u','r','r','e','n','t','C','o','n','t','r','o','l','S','e','t','\\',
878           'C','o','n','t','r','o','l',0 };
879     static const WCHAR pipetimeoutW[] =
880         {'S','e','r','v','i','c','e','s','P','i','p','e','T','i','m','e','o','u','t',0};
881     static const WCHAR killtimeoutW[] =
882         {'W','a','i','t','T','o','K','i','l','l','S','e','r','v','i','c','e','T','i','m','e','o','u','t',0};
883     HKEY key;
884     WCHAR buffer[64];
885     DWORD type, count, val;
886
887     if (RegOpenKeyW( HKEY_LOCAL_MACHINE, controlW, &key )) return;
888
889     count = sizeof(buffer);
890     if (!RegQueryValueExW( key, pipetimeoutW, NULL, &type, (BYTE *)buffer, &count ) &&
891         type == REG_SZ && (val = atoiW( buffer )))
892         service_pipe_timeout = val;
893
894     count = sizeof(buffer);
895     if (!RegQueryValueExW( key, killtimeoutW, NULL, &type, (BYTE *)buffer, &count ) &&
896         type == REG_SZ && (val = atoiW( buffer )))
897         service_kill_timeout = val;
898
899     RegCloseKey( key );
900 }
901
902 int main(int argc, char *argv[])
903 {
904     static const WCHAR svcctl_started_event[] = SVCCTL_STARTED_EVENT;
905     DWORD err;
906
907     g_hStartedEvent = CreateEventW(NULL, TRUE, FALSE, svcctl_started_event);
908     load_registry_parameters();
909     err = scmdatabase_create(&active_database);
910     if (err != ERROR_SUCCESS)
911         return err;
912     if ((err = scmdatabase_load_services(active_database)) != ERROR_SUCCESS)
913         return err;
914     if ((err = RPC_Init()) == ERROR_SUCCESS)
915     {
916         scmdatabase_autostart_services(active_database);
917         events_loop();
918         scmdatabase_wait_terminate(active_database);
919     }
920     scmdatabase_destroy(active_database);
921     if (env)
922         DestroyEnvironmentBlock(env);
923
924     WINE_TRACE("services.exe exited with code %d\n", err);
925     return err;
926 }