Architecture of the Web Update Wizard
Web Server
The Web Update Wizard works with any web server. It simply launches http:
requests against the server. All processing is done at the client end.
Therefore, the server does not need cgi, asp, php or any other type of server side
processing.
(However, it is possible to dynamically generate the update
scripts on the server using PHP / ASP etc..)
Client PC
There are 2 alternative options for delivering updates on the client PC:
- Installing and using the Web Update Wizard 'server' application, WebUpdateSvc4.exe,
as a Windows Service.
- Using the Web Update Wizard component, WebUpdateSvc4.exe, as a simple Windows application.
More
More..
Option (1) is compatible with all Windows operating systems from Windows 2000 onwards
(i.e. not Windows 98ME) and is a requirement for Windows Vista or any user environment
where the logged on user does not have rights to 'Program Files' and other secured
folder locations.
Here, the WebUpdateSvc4.exe component is installed as a Windows Service application,
runs in the background at all times, and operates in the SYSTEM security context.
The SYSTEM security context is analgous to Administrator mode, and it is therefore
able to update files in locations which the logged on user cannot. Under Vista,
where even an Administrator would be prompted by Vista User Account Control (UAC)
the Web Update Wizard is able to update files without UAC prompts appearing.
The memory overhead of the Web Update Wizard service is from 2.5 to 5Mb of RAM.
Option (2) only loads the WebUpdateSvc4.exe application whenever an update check
is initiated from your application and therefore has zero ongoing memory requirement.
However, on Vista or tied down XP/2000 desktops it will not work, because, launched
from your application it inherits the same security context your application is
running under - i.e. the logged on user.
Therefore our recommendation is to use option (1), the Windows service option, which
over time is likely to become the only viable option for providing automatic updates
in any case.
As an application developer, you can initiate an update check using either a call
to the supplied wuw4.dll Dynamic Link Library (DLL) or you can launch the supplied
wuwstub.exe applet using the ShellExecute() Windows API function or equivalent.
Either way, you pass the URL of the Web Update Wizard update script to wuw4.dll
or wuwstub.exe. From then on the Web Update Wizard components take over and
check for / install updates, whilst your application is free to continue processing.
(Alternatively, you can let your application wait until the update check has completed,
using an alternate exported function from the wuw4.dll).
Service implementation of the Web Update Wizard (recommended)
Here is how the Web Update Wizard operates when it is running as a Windows Service.
Click here to jump down the page to a description of it running
as an application which is launched from your own running application.
The Web Update Wizard components work cooperatively, as shown in the following diagram:
Therefore,
- Your application calls one of the exported functions from wuw4.dll, passing the
url of the update script as an argument - for example
WebUpdate("http://www.mycompany.com/updates/updatescript.txt"
- WuW4.dll then launches WuWUI.exe, the user interface component. WuWUI.exe
therefore runs in the same security context as your application. The wuw4.dll
WebUpdate() function also sends the URL of the update script to the Web Update Wizard
Service component (WebUpdateSvc4.exe) through a named pipe.
- WebUpdateSvc4.exe, the service component running in the SYSTEM security context,
takes over control of the update process and WuW4.dll returns control to your application.
- A Windows service should not interact directly with the user (and in Windows Vista
it cannot without UAC intervention). Therefore the service component communicates
with WuWUI.exe, the user interface component, through a named pipe. WuWUI.exe performs
the following tasks in response to the dialog it engages in with WebUpdateSvc4.exe:
- Displays all user interaction from the Web Update Wizard to the user.
- Downloads all files referenced in your update script (because SYSTEM typically does
not have rights to proxy servers etc. whilst the logged in user does have these
rights)
- Launches processes in the logged on user's security context, for example, when the
updated application needs to be restarted after a successful update.
- If the Web Update Service (WebUpdateSvc4.exe) determines that an update is required
then it works cooperatively with the user interface component (WuWUI.exe) to process
it. WuWUI.exe interacts with the user and downloads the files required.
WebUpdateSvc4.exe installs the updated files into the required locations. WuWUI.exe
restarts the application in the logged on user's security context once the update
has been installed. WebUpdateSvc4.exe or WuWUI.exe can launch additional
processes either before or after the update. Which component launches the
process is determined by the ExecBefore/ExecAfter optional parameters - there will
be valid instances where you need to launch a process with SYSTEM (=Administrator)
rights, and also when you want to launch in the logged on user's security context.
Both options are possible!
- Once the update has been processed, WebUpdateSvc4.exe tells WuWUI.exe to exit, so
that only WebUpdateSvc4.exe is left running on the user's computer.
- If no update is required then the WebUpdateSvc4.exe component tells WuWUI.exe to
exit and no user interaction occurs, (unless you specify a
block [99999] message section in your update script).
If you find it easier to launch a process from your application than using an exported
function in wuw4.dll you can, instead, launch our wuwstub.exe utility, passing it
the url of your update script as a command line argument. Using the Windows
ShellExecute() API from your application, you would launch wuwstub.exe like
this:
ShellExecute(NULL, "open",
"wuwstub.exe",
"http://www.mycompany.com/updates/updatescript.txt",
NULL,
SW_HIDE);
Wuwstub.exe is dynamically linked to wuw4.dll.
Therefore when you call wuwstub.exe using ShellExecute() from your application,
wuwstub.exe effectively becomes 'YourApp.exe" in the diagram above.
Using the Web Update Wizard in Application mode (i.e. not as
a Windows Service)
Here is how the Web Update Wizard operates when it is running in application mode
- i.e. within the logged in user's security context. Click
here to jump back up the page to a description of running WebUpdateSvc4.exe
as a Windows service application.
Application mode means that WebUpdateSvc4.exe is launched as a normal Windows application
by the wuw4.dll and therefore operates in the security context of the logged on
user.
Please note that this mode of operation will
not work properly on Windows Vista
or all versions of Windows 2000/XP where the logged on user does not have
installation rights to Program Files and other protected folders.
This is because the Web Update Wizard has to run in the security context of the
logged on user in this mode.
It is not possible within Windows to transparently acquire elevated rights
from this position.
Therefore it is strongly recommended that you deploy the
Web Update Wizard as a service application - it really is the future (and present,
really!) of automatic updates.
The Web Update Wizard components work cooperatively in application mode, as shown
in the following diagram:
Therefore,
- As with the service implementation, your application calls
one of the exported functions from wuw4.dll. However, this time you append
the text "[AsApp]" to the URL argument - for example
WebUpdate("http://www.mycompany.com/updates/updatescript.txt[AsApp]"
- Wuw4.dll then launches WuWUI.exe, the user interface
component. It also launches WebUpdateSvc4.exe,
passing it the URL of the update script as a command line argument.
Because WebUpdateSvc4.exe is launched as an application it is limited to operating
within the security context of the logged on user.
- WebUpdateSvc4.exe starts up and takes over control of the update process.
Wuw4.dll returns control to your application.
- If WebUpdateSvc4.exe determines that an update is required it works cooperatively
with the user interface component (WuWUI.exe) to process it.
- Once the update has been processed, WebUpdateSvc4.exe tells WuWUI.exe to exit and
then exits itself.
- If no update is required then the WebUpdateSvc4.exe component tells WuWUI.exe to
exit, no user interaction occurs, (unless you specify a
block [99999] message section in your update script) and WebUpdateSvc4.exe
itself then executes.
If you find it easier to launch a process from your application than using an exported
function in wuw4.dll you can, instead, launch our wuwstub.exe utility, passing it
the url of your update script as a command line argument. Using the Windows
ShellExecute() API from your application, you would launch wuwstub.exe like
this:
ShellExecute(NULL, "open",
"wuwstub.exe",
"http://www.mycompany.com/updates/updatescript.txt[AsApp]",
NULL,
SW_HIDE);
Wuwstub.exe is dynamically linked to wuw4.dll. Therefore when you call wuwstub.exe
using ShellExecute() from your application, wuwstub.exe effectively becomes 'YourApp.exe"
in the diagram above.
Summary
This topic has explained the architecture differences between running the Web Update
Wizard as a service application and running it as a Windows application in application
mode.
The advantage of running in application mode is that the Web Update Wizard imposes
no memory overhead, except when it is processing an update.
The advantage of running as a service is that updates take place in the SYSTEM security
context - i.e. as if an Administrator was driving the machine. The disadvantage
is that the service application imposes a permanent memory overhead of 2.5Mb to
5Mb.
In the past application mode was preferred by many for the memory saving.
However, although you are still free to use this mode, the restrictions and additional
security settings implemented in Windows Vista and in corporate XP deployments makes
application mode very much a thing of the past.
Ultimately, any update component that successfully updates software components
in protected folders needs to be implemented as a service to remain compatible with
Windows Vista and its successors.