xref: /illumos-gate/usr/src/cmd/cron/crontab.c (revision 6863ede2)
17c478bd9Sstevel@tonic-gate /*
27c478bd9Sstevel@tonic-gate  * CDDL HEADER START
37c478bd9Sstevel@tonic-gate  *
47c478bd9Sstevel@tonic-gate  * The contents of this file are subject to the terms of the
53010f05bSdp  * Common Development and Distribution License (the "License").
63010f05bSdp  * You may not use this file except in compliance with the License.
77c478bd9Sstevel@tonic-gate  *
87c478bd9Sstevel@tonic-gate  * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
97c478bd9Sstevel@tonic-gate  * or http://www.opensolaris.org/os/licensing.
107c478bd9Sstevel@tonic-gate  * See the License for the specific language governing permissions
117c478bd9Sstevel@tonic-gate  * and limitations under the License.
127c478bd9Sstevel@tonic-gate  *
137c478bd9Sstevel@tonic-gate  * When distributing Covered Code, include this CDDL HEADER in each
147c478bd9Sstevel@tonic-gate  * file and include the License file at usr/src/OPENSOLARIS.LICENSE.
157c478bd9Sstevel@tonic-gate  * If applicable, add the following below this CDDL HEADER, with the
167c478bd9Sstevel@tonic-gate  * fields enclosed by brackets "[]" replaced with your own identifying
177c478bd9Sstevel@tonic-gate  * information: Portions Copyright [yyyy] [name of copyright owner]
187c478bd9Sstevel@tonic-gate  *
197c478bd9Sstevel@tonic-gate  * CDDL HEADER END
207c478bd9Sstevel@tonic-gate  */
217c478bd9Sstevel@tonic-gate /*
22b0d0a1c8SViswanathan Kannappan  * Copyright 2009 Sun Microsystems, Inc.  All rights reserved.
237c478bd9Sstevel@tonic-gate  * Use is subject to license terms.
247c478bd9Sstevel@tonic-gate  */
257c478bd9Sstevel@tonic-gate /*	Copyright (c) 1984, 1986, 1987, 1988, 1989 AT&T	*/
2619803d09SToomas Soome /*	  All Rights Reserved	*/
277c478bd9Sstevel@tonic-gate 
286b734416SAndy Fiddaman /*
29*6863ede2SAndy Fiddaman  * Copyright 2020 OmniOS Community Edition (OmniOSce) Association.
306b734416SAndy Fiddaman  */
317c478bd9Sstevel@tonic-gate 
327c478bd9Sstevel@tonic-gate #include <sys/types.h>
337c478bd9Sstevel@tonic-gate #include <sys/stat.h>
347c478bd9Sstevel@tonic-gate #include <sys/types.h>
357c478bd9Sstevel@tonic-gate #include <sys/wait.h>
367c478bd9Sstevel@tonic-gate #include <errno.h>
377c478bd9Sstevel@tonic-gate #include <signal.h>
387c478bd9Sstevel@tonic-gate #include <stdio.h>
397c478bd9Sstevel@tonic-gate #include <stdlib.h>
407c478bd9Sstevel@tonic-gate #include <string.h>
417c478bd9Sstevel@tonic-gate #include <fcntl.h>
427c478bd9Sstevel@tonic-gate #include <ctype.h>
437c478bd9Sstevel@tonic-gate #include <pwd.h>
447c478bd9Sstevel@tonic-gate #include <unistd.h>
457c478bd9Sstevel@tonic-gate #include <locale.h>
467c478bd9Sstevel@tonic-gate #include <nl_types.h>
477c478bd9Sstevel@tonic-gate #include <langinfo.h>
487c478bd9Sstevel@tonic-gate #include <libintl.h>
497c478bd9Sstevel@tonic-gate #include <security/pam_appl.h>
505b08e637SChris Gerhard #include <limits.h>
515b08e637SChris Gerhard #include <libzoneinfo.h>
527c478bd9Sstevel@tonic-gate #include "cron.h"
533d63ea05Sas #include "getresponse.h"
547c478bd9Sstevel@tonic-gate 
55d61d085dScf #if defined(XPG4)
56d61d085dScf #define	VIPATH	"/usr/xpg4/bin/vi"
57d61d085dScf #elif defined(XPG6)
58d61d085dScf #define	VIPATH	"/usr/xpg6/bin/vi"
59d61d085dScf #else
60d61d085dScf #define	_XPG_NOTDEFINED
61d61d085dScf #define	VIPATH	"vi"
62d61d085dScf #endif
63d61d085dScf 
647c478bd9Sstevel@tonic-gate #define	TMPFILE		"_cron"		/* prefix for tmp file */
657c478bd9Sstevel@tonic-gate #define	CRMODE		0600	/* mode for creating crontabs */
667c478bd9Sstevel@tonic-gate 
677c478bd9Sstevel@tonic-gate #define	BADCREATE	\
687c478bd9Sstevel@tonic-gate 	"can't create your crontab file in the crontab directory."
697c478bd9Sstevel@tonic-gate #define	BADOPEN		"can't open your crontab file."
707c478bd9Sstevel@tonic-gate #define	BADSHELL	\
717c478bd9Sstevel@tonic-gate 	"because your login shell isn't /usr/bin/sh, you can't use cron."
727c478bd9Sstevel@tonic-gate #define	WARNSHELL	"warning: commands will be executed using /usr/bin/sh\n"
737c478bd9Sstevel@tonic-gate #define	BADUSAGE	\
743010f05bSdp 	"usage:\n"			\
75*6863ede2SAndy Fiddaman 	"\tcrontab [-u username] [file]\n"		\
76*6863ede2SAndy Fiddaman 	"\tcrontab [-u username] { -e | -l | -r }\n"	\
77*6863ede2SAndy Fiddaman 	"\tcrontab { -e | -l | -r } [username]"
787c478bd9Sstevel@tonic-gate #define	INVALIDUSER	"you are not a valid user (no entry in /etc/passwd)."
797c478bd9Sstevel@tonic-gate #define	NOTALLOWED	"you are not authorized to use cron.  Sorry."
807c478bd9Sstevel@tonic-gate #define	NOTROOT		\
817c478bd9Sstevel@tonic-gate 	"you must be super-user to access another user's crontab file"
827c478bd9Sstevel@tonic-gate #define	AUDITREJECT	"The audit context for your shell has not been set."
837c478bd9Sstevel@tonic-gate #define	EOLN		"unexpected end of line."
847c478bd9Sstevel@tonic-gate #define	UNEXPECT	"unexpected character found in line."
857c478bd9Sstevel@tonic-gate #define	OUTOFBOUND	"number out of bounds."
866b734416SAndy Fiddaman #define	OVERFLOW	"too many elements."
877c478bd9Sstevel@tonic-gate #define	ERRSFND		"errors detected in input, no crontab file generated."
887c478bd9Sstevel@tonic-gate #define	ED_ERROR	\
897c478bd9Sstevel@tonic-gate 	"     The editor indicates that an error occurred while you were\n"\
907c478bd9Sstevel@tonic-gate 	"     editing the crontab data - usually a minor typing error.\n\n"
917c478bd9Sstevel@tonic-gate #define	BADREAD		"error reading your crontab file"
927c478bd9Sstevel@tonic-gate #define	ED_PROMPT	\
933d63ea05Sas 	"     Edit again, to ensure crontab information is intact (%s/%s)?\n"\
943d63ea05Sas 	"     ('%s' will discard edits.)"
957c478bd9Sstevel@tonic-gate #define	NAMETOOLONG	"login name too long"
965b08e637SChris Gerhard #define	BAD_TZ	"Timezone unrecognized in: %s"
975b08e637SChris Gerhard #define	BAD_SHELL	"Invalid shell specified: %s"
985b08e637SChris Gerhard #define	BAD_HOME	"Unable to access directory: %s\t%s\n"
997c478bd9Sstevel@tonic-gate 
1007c478bd9Sstevel@tonic-gate extern int	per_errno;
1017c478bd9Sstevel@tonic-gate 
1027c478bd9Sstevel@tonic-gate extern int	audit_crontab_modify(char *, char *, int);
1037c478bd9Sstevel@tonic-gate extern int	audit_crontab_delete(char *, int);
1047c478bd9Sstevel@tonic-gate extern int	audit_crontab_not_allowed(uid_t, char *);
1057c478bd9Sstevel@tonic-gate 
1067c478bd9Sstevel@tonic-gate int		err;
1077c478bd9Sstevel@tonic-gate int		cursor;
1087c478bd9Sstevel@tonic-gate char		*cf;
1097c478bd9Sstevel@tonic-gate char		*tnam;
1107c478bd9Sstevel@tonic-gate char		edtemp[5+13+1];
1117c478bd9Sstevel@tonic-gate char		line[CTLINESIZE];
1127c478bd9Sstevel@tonic-gate static		char	login[UNAMESIZE];
1137c478bd9Sstevel@tonic-gate 
1143d63ea05Sas static void	catch(int);
1153d63ea05Sas static void	crabort(char *);
1163d63ea05Sas static void	cerror(char *);
1173d63ea05Sas static void	copycron(FILE *);
1187c478bd9Sstevel@tonic-gate 
119032624d5Sbasabi int
main(int argc,char ** argv)120032624d5Sbasabi main(int argc, char **argv)
1217c478bd9Sstevel@tonic-gate {
1227c478bd9Sstevel@tonic-gate 	int	c, r;
1237c478bd9Sstevel@tonic-gate 	int	rflag	= 0;
1247c478bd9Sstevel@tonic-gate 	int	lflag	= 0;
1257c478bd9Sstevel@tonic-gate 	int	eflag	= 0;
1267c478bd9Sstevel@tonic-gate 	int	errflg	= 0;
1277c478bd9Sstevel@tonic-gate 	char *pp;
1287c478bd9Sstevel@tonic-gate 	FILE *fp, *tmpfp;
1297c478bd9Sstevel@tonic-gate 	struct stat stbuf;
1307c478bd9Sstevel@tonic-gate 	struct passwd *pwp;
1317c478bd9Sstevel@tonic-gate 	time_t omodtime;
1327c478bd9Sstevel@tonic-gate 	char *editor;
1337c478bd9Sstevel@tonic-gate 	uid_t ruid;
1347c478bd9Sstevel@tonic-gate 	pid_t pid;
1357c478bd9Sstevel@tonic-gate 	int stat_loc;
1367c478bd9Sstevel@tonic-gate 	int ret;
1377c478bd9Sstevel@tonic-gate 	char real_login[UNAMESIZE];
138*6863ede2SAndy Fiddaman 	char *user = NULL;
1397c478bd9Sstevel@tonic-gate 	int tmpfd = -1;
1407c478bd9Sstevel@tonic-gate 	pam_handle_t *pamh;
1417c478bd9Sstevel@tonic-gate 	int pam_error;
14278ae324cSSumanth Naropanth 	char *buf;
14378ae324cSSumanth Naropanth 	size_t buflen;
1447c478bd9Sstevel@tonic-gate 
1457c478bd9Sstevel@tonic-gate 	(void) setlocale(LC_ALL, "");
1467c478bd9Sstevel@tonic-gate #if !defined(TEXT_DOMAIN)	/* Should be defined by cc -D */
147*6863ede2SAndy Fiddaman #define	TEXT_DOMAIN "SYS_TEST"	/* Use this only if it wasn't */
1487c478bd9Sstevel@tonic-gate #endif
1497c478bd9Sstevel@tonic-gate 	(void) textdomain(TEXT_DOMAIN);
1503d63ea05Sas 
1513d63ea05Sas 	if (init_yes() < 0) {
1523d63ea05Sas 		(void) fprintf(stderr, gettext(ERR_MSG_INIT_YES),
1533d63ea05Sas 		    strerror(errno));
1543d63ea05Sas 		exit(1);
1553d63ea05Sas 	}
1567c478bd9Sstevel@tonic-gate 
157*6863ede2SAndy Fiddaman 	while ((c = getopt(argc, argv, "elru:")) != EOF) {
1587c478bd9Sstevel@tonic-gate 		switch (c) {
1597c478bd9Sstevel@tonic-gate 			case 'e':
1607c478bd9Sstevel@tonic-gate 				eflag++;
1617c478bd9Sstevel@tonic-gate 				break;
1627c478bd9Sstevel@tonic-gate 			case 'l':
1637c478bd9Sstevel@tonic-gate 				lflag++;
1647c478bd9Sstevel@tonic-gate 				break;
1657c478bd9Sstevel@tonic-gate 			case 'r':
1667c478bd9Sstevel@tonic-gate 				rflag++;
1677c478bd9Sstevel@tonic-gate 				break;
168*6863ede2SAndy Fiddaman 			case 'u':
169*6863ede2SAndy Fiddaman 				user = optarg;
170*6863ede2SAndy Fiddaman 				break;
1717c478bd9Sstevel@tonic-gate 			case '?':
1727c478bd9Sstevel@tonic-gate 				errflg++;
1737c478bd9Sstevel@tonic-gate 				break;
1747c478bd9Sstevel@tonic-gate 		}
175*6863ede2SAndy Fiddaman 	}
176*6863ede2SAndy Fiddaman 
177*6863ede2SAndy Fiddaman 	argc -= optind;
178*6863ede2SAndy Fiddaman 	argv += optind;
1797c478bd9Sstevel@tonic-gate 
1807c478bd9Sstevel@tonic-gate 	if (eflag + lflag + rflag > 1)
1817c478bd9Sstevel@tonic-gate 		errflg++;
1827c478bd9Sstevel@tonic-gate 
183*6863ede2SAndy Fiddaman 	if ((eflag || lflag || rflag) && argc > 0) {
184*6863ede2SAndy Fiddaman 		if (user != NULL)
185*6863ede2SAndy Fiddaman 			errflg++;
186*6863ede2SAndy Fiddaman 		else
187*6863ede2SAndy Fiddaman 			user = *argv;
188*6863ede2SAndy Fiddaman 	}
189*6863ede2SAndy Fiddaman 
1907c478bd9Sstevel@tonic-gate 	if (errflg || argc > 1)
1917c478bd9Sstevel@tonic-gate 		crabort(BADUSAGE);
1927c478bd9Sstevel@tonic-gate 
1937c478bd9Sstevel@tonic-gate 	ruid = getuid();
1947c478bd9Sstevel@tonic-gate 	if ((pwp = getpwuid(ruid)) == NULL)
1957c478bd9Sstevel@tonic-gate 		crabort(INVALIDUSER);
1967c478bd9Sstevel@tonic-gate 
1977c478bd9Sstevel@tonic-gate 	if (strlcpy(real_login, pwp->pw_name, sizeof (real_login))
198*6863ede2SAndy Fiddaman 	    >= sizeof (real_login)) {
1997c478bd9Sstevel@tonic-gate 		crabort(NAMETOOLONG);
200*6863ede2SAndy Fiddaman 	}
2017c478bd9Sstevel@tonic-gate 
202*6863ede2SAndy Fiddaman 	if (user != NULL) {
203*6863ede2SAndy Fiddaman 		if ((pwp = getpwnam(user)) == NULL)
2047c478bd9Sstevel@tonic-gate 			crabort(INVALIDUSER);
2057c478bd9Sstevel@tonic-gate 
206d1419d5aSNobutomo Nakano 		if (!cron_admin(real_login)) {
2077c478bd9Sstevel@tonic-gate 			if (pwp->pw_uid != ruid)
2087c478bd9Sstevel@tonic-gate 				crabort(NOTROOT);
2097c478bd9Sstevel@tonic-gate 			else
2107c478bd9Sstevel@tonic-gate 				pp = getuser(ruid);
211*6863ede2SAndy Fiddaman 		} else {
212*6863ede2SAndy Fiddaman 			pp = user;
213*6863ede2SAndy Fiddaman 		}
2147c478bd9Sstevel@tonic-gate 	} else {
2157c478bd9Sstevel@tonic-gate 		pp = getuser(ruid);
2167c478bd9Sstevel@tonic-gate 	}
2177c478bd9Sstevel@tonic-gate 
2187c478bd9Sstevel@tonic-gate 	if (pp == NULL) {
2197c478bd9Sstevel@tonic-gate 		if (per_errno == 2)
2207c478bd9Sstevel@tonic-gate 			crabort(BADSHELL);
2217c478bd9Sstevel@tonic-gate 		else
2227c478bd9Sstevel@tonic-gate 			crabort(INVALIDUSER);
2237c478bd9Sstevel@tonic-gate 	}
2247c478bd9Sstevel@tonic-gate 	if (strlcpy(login, pp, sizeof (login)) >= sizeof (login))
2257c478bd9Sstevel@tonic-gate 		crabort(NAMETOOLONG);
2267c478bd9Sstevel@tonic-gate 	if (!allowed(login, CRONALLOW, CRONDENY))
2277c478bd9Sstevel@tonic-gate 		crabort(NOTALLOWED);
2287c478bd9Sstevel@tonic-gate 
2297c478bd9Sstevel@tonic-gate 	/* Do account validation check */
2307c478bd9Sstevel@tonic-gate 	pam_error = pam_start("cron", pp, NULL, &pamh);
2317c478bd9Sstevel@tonic-gate 	if (pam_error != PAM_SUCCESS) {
2327c478bd9Sstevel@tonic-gate 		crabort((char *)pam_strerror(pamh, pam_error));
2337c478bd9Sstevel@tonic-gate 	}
2347c478bd9Sstevel@tonic-gate 	pam_error = pam_acct_mgmt(pamh, PAM_SILENT);
2357c478bd9Sstevel@tonic-gate 	if (pam_error != PAM_SUCCESS) {
2367c478bd9Sstevel@tonic-gate 		(void) fprintf(stderr, gettext("Warning - Invalid account: "
2377c478bd9Sstevel@tonic-gate 		    "'%s' not allowed to execute cronjobs\n"), pp);
2387c478bd9Sstevel@tonic-gate 	}
2397c478bd9Sstevel@tonic-gate 	(void) pam_end(pamh, PAM_SUCCESS);
2407c478bd9Sstevel@tonic-gate 
2417c478bd9Sstevel@tonic-gate 
2427c478bd9Sstevel@tonic-gate 	/* check for unaudited shell */
2437c478bd9Sstevel@tonic-gate 	if (audit_crontab_not_allowed(ruid, pp))
2447c478bd9Sstevel@tonic-gate 		crabort(AUDITREJECT);
2457c478bd9Sstevel@tonic-gate 
2467c478bd9Sstevel@tonic-gate 	cf = xmalloc(strlen(CRONDIR)+strlen(login)+2);
2477c478bd9Sstevel@tonic-gate 	strcat(strcat(strcpy(cf, CRONDIR), "/"), login);
2487c478bd9Sstevel@tonic-gate 
2497c478bd9Sstevel@tonic-gate 	if (rflag) {
2507c478bd9Sstevel@tonic-gate 		r = unlink(cf);
2517c478bd9Sstevel@tonic-gate 		cron_sendmsg(DELETE, login, login, CRON);
2527c478bd9Sstevel@tonic-gate 		audit_crontab_delete(cf, r);
2537c478bd9Sstevel@tonic-gate 		exit(0);
2547c478bd9Sstevel@tonic-gate 	}
2557c478bd9Sstevel@tonic-gate 	if (lflag) {
2567c478bd9Sstevel@tonic-gate 		if ((fp = fopen(cf, "r")) == NULL)
2577c478bd9Sstevel@tonic-gate 			crabort(BADOPEN);
2587c478bd9Sstevel@tonic-gate 		while (fgets(line, CTLINESIZE, fp) != NULL)
2597c478bd9Sstevel@tonic-gate 			fputs(line, stdout);
2607c478bd9Sstevel@tonic-gate 		fclose(fp);
2617c478bd9Sstevel@tonic-gate 		exit(0);
2627c478bd9Sstevel@tonic-gate 	}
2637c478bd9Sstevel@tonic-gate 	if (eflag) {
2647c478bd9Sstevel@tonic-gate 		if ((fp = fopen(cf, "r")) == NULL) {
2657c478bd9Sstevel@tonic-gate 			if (errno != ENOENT)
2667c478bd9Sstevel@tonic-gate 				crabort(BADOPEN);
2677c478bd9Sstevel@tonic-gate 		}
2687c478bd9Sstevel@tonic-gate 		(void) strcpy(edtemp, "/tmp/crontabXXXXXX");
2697c478bd9Sstevel@tonic-gate 		tmpfd = mkstemp(edtemp);
2707c478bd9Sstevel@tonic-gate 		if (fchown(tmpfd, ruid, -1) == -1) {
2717c478bd9Sstevel@tonic-gate 			(void) close(tmpfd);
2727c478bd9Sstevel@tonic-gate 			crabort("fchown of temporary file failed");
2737c478bd9Sstevel@tonic-gate 		}
2747c478bd9Sstevel@tonic-gate 		(void) close(tmpfd);
2757c478bd9Sstevel@tonic-gate 		/*
2767c478bd9Sstevel@tonic-gate 		 * Fork off a child with user's permissions,
2777c478bd9Sstevel@tonic-gate 		 * to edit the crontab file
2787c478bd9Sstevel@tonic-gate 		 */
2797c478bd9Sstevel@tonic-gate 		if ((pid = fork()) == (pid_t)-1)
2807c478bd9Sstevel@tonic-gate 			crabort("fork failed");
2817c478bd9Sstevel@tonic-gate 		if (pid == 0) {		/* child process */
2827c478bd9Sstevel@tonic-gate 			/* give up super-user privileges. */
2837c478bd9Sstevel@tonic-gate 			setuid(ruid);
2847c478bd9Sstevel@tonic-gate 			if ((tmpfp = fopen(edtemp, "w")) == NULL)
2857c478bd9Sstevel@tonic-gate 				crabort("can't create temporary file");
2867c478bd9Sstevel@tonic-gate 			if (fp != NULL) {
2877c478bd9Sstevel@tonic-gate 				/*
2887c478bd9Sstevel@tonic-gate 				 * Copy user's crontab file to temporary file.
2897c478bd9Sstevel@tonic-gate 				 */
2907c478bd9Sstevel@tonic-gate 				while (fgets(line, CTLINESIZE, fp) != NULL) {
2917c478bd9Sstevel@tonic-gate 					fputs(line, tmpfp);
2927c478bd9Sstevel@tonic-gate 					if (ferror(tmpfp)) {
2937c478bd9Sstevel@tonic-gate 						fclose(fp);
2947c478bd9Sstevel@tonic-gate 						fclose(tmpfp);
2957c478bd9Sstevel@tonic-gate 						crabort("write error on"
2967c478bd9Sstevel@tonic-gate 						    "temporary file");
2977c478bd9Sstevel@tonic-gate 					}
2987c478bd9Sstevel@tonic-gate 				}
2997c478bd9Sstevel@tonic-gate 				if (ferror(fp)) {
3007c478bd9Sstevel@tonic-gate 					fclose(fp);
3017c478bd9Sstevel@tonic-gate 					fclose(tmpfp);
3027c478bd9Sstevel@tonic-gate 					crabort(BADREAD);
3037c478bd9Sstevel@tonic-gate 				}
3047c478bd9Sstevel@tonic-gate 				fclose(fp);
3057c478bd9Sstevel@tonic-gate 			}
3067c478bd9Sstevel@tonic-gate 			if (fclose(tmpfp) == EOF)
3077c478bd9Sstevel@tonic-gate 				crabort("write error on temporary file");
3087c478bd9Sstevel@tonic-gate 			if (stat(edtemp, &stbuf) < 0)
3097c478bd9Sstevel@tonic-gate 				crabort("can't stat temporary file");
3107c478bd9Sstevel@tonic-gate 			omodtime = stbuf.st_mtime;
311d61d085dScf #ifdef _XPG_NOTDEFINED
3127c478bd9Sstevel@tonic-gate 			editor = getenv("VISUAL");
313d61d085dScf 			if (editor == NULL) {
314d61d085dScf #endif
3157c478bd9Sstevel@tonic-gate 				editor = getenv("EDITOR");
316d61d085dScf 				if (editor == NULL)
317d61d085dScf 					editor = VIPATH;
318d61d085dScf #ifdef _XPG_NOTDEFINED
319d61d085dScf 			}
320d61d085dScf #endif
32178ae324cSSumanth Naropanth 			buflen = strlen(editor) + strlen(edtemp) + 2;
32278ae324cSSumanth Naropanth 			buf = xmalloc(buflen);
32378ae324cSSumanth Naropanth 			(void) snprintf(buf, buflen, "%s %s", editor, edtemp);
3241c0be37bSsn 
3257c478bd9Sstevel@tonic-gate 			sleep(1);
3267c478bd9Sstevel@tonic-gate 
3277c478bd9Sstevel@tonic-gate 			while (1) {
32878ae324cSSumanth Naropanth 				ret = system(buf);
3291c0be37bSsn 
3307c478bd9Sstevel@tonic-gate 				/* sanity checks */
3317c478bd9Sstevel@tonic-gate 				if ((tmpfp = fopen(edtemp, "r")) == NULL)
3323d63ea05Sas 					crabort("can't open temporary file");
3337c478bd9Sstevel@tonic-gate 				if (fstat(fileno(tmpfp), &stbuf) < 0)
3343d63ea05Sas 					crabort("can't stat temporary file");
3357c478bd9Sstevel@tonic-gate 				if (stbuf.st_size == 0)
3363d63ea05Sas 					crabort("temporary file empty");
3377c478bd9Sstevel@tonic-gate 				if (omodtime == stbuf.st_mtime) {
3383d63ea05Sas 					(void) unlink(edtemp);
3393d63ea05Sas 					fprintf(stderr, gettext(
3403d63ea05Sas 					    "The crontab file was not"
3413d63ea05Sas 					    " changed.\n"));
3423d63ea05Sas 					exit(1);
3437c478bd9Sstevel@tonic-gate 				}
34478ae324cSSumanth Naropanth 				if ((ret) && (errno != EINTR)) {
3451c0be37bSsn 					/*
3461c0be37bSsn 					 * Some editors (like 'vi') can return
3471c0be37bSsn 					 * a non-zero exit status even though
3481c0be37bSsn 					 * everything is okay. Need to check.
3491c0be37bSsn 					 */
3501c0be37bSsn 					fprintf(stderr, gettext(ED_ERROR));
3511c0be37bSsn 					fflush(stderr);
3521c0be37bSsn 					if (isatty(fileno(stdin))) {
3531c0be37bSsn 						/* Interactive */
3541c0be37bSsn 						fprintf(stdout,
3551c0be37bSsn 						    gettext(ED_PROMPT),
3561c0be37bSsn 						    yesstr, nostr, nostr);
3571c0be37bSsn 						fflush(stdout);
3581c0be37bSsn 
3591c0be37bSsn 						if (yes()) {
3601c0be37bSsn 							/* Edit again */
3611c0be37bSsn 							continue;
3621c0be37bSsn 						} else {
3631c0be37bSsn 							/* Dump changes */
3641c0be37bSsn 							(void) unlink(edtemp);
3651c0be37bSsn 							exit(1);
3661c0be37bSsn 						}
3677c478bd9Sstevel@tonic-gate 					} else {
3681c0be37bSsn 						/*
3691c0be37bSsn 						 * Non-interactive, dump changes
3701c0be37bSsn 						 */
3717c478bd9Sstevel@tonic-gate 						(void) unlink(edtemp);
3727c478bd9Sstevel@tonic-gate 						exit(1);
3737c478bd9Sstevel@tonic-gate 					}
3747c478bd9Sstevel@tonic-gate 				}
3751c0be37bSsn 				exit(0);
3767c478bd9Sstevel@tonic-gate 			} /* while (1) */
3777c478bd9Sstevel@tonic-gate 		}
3787c478bd9Sstevel@tonic-gate 
3797c478bd9Sstevel@tonic-gate 		/* fix for 1125555 - ignore common signals while waiting */
3807c478bd9Sstevel@tonic-gate 		(void) signal(SIGINT, SIG_IGN);
3817c478bd9Sstevel@tonic-gate 		(void) signal(SIGHUP, SIG_IGN);
3827c478bd9Sstevel@tonic-gate 		(void) signal(SIGQUIT, SIG_IGN);
3837c478bd9Sstevel@tonic-gate 		(void) signal(SIGTERM, SIG_IGN);
3847c478bd9Sstevel@tonic-gate 		wait(&stat_loc);
3857c478bd9Sstevel@tonic-gate 		if ((stat_loc & 0xFF00) != 0)
3867c478bd9Sstevel@tonic-gate 			exit(1);
3877c478bd9Sstevel@tonic-gate 
3881c0be37bSsn 		/*
3891c0be37bSsn 		 * unlink edtemp as 'ruid'. The file contents will be held
3901c0be37bSsn 		 * since we open the file descriptor 'tmpfp' before calling
3911c0be37bSsn 		 * unlink.
3921c0be37bSsn 		 */
3931c0be37bSsn 		if (((ret = seteuid(ruid)) < 0) ||
3941c0be37bSsn 		    ((tmpfp = fopen(edtemp, "r")) == NULL) ||
3951c0be37bSsn 		    (unlink(edtemp) == -1)) {
3967c478bd9Sstevel@tonic-gate 			fprintf(stderr, "crontab: %s: %s\n",
3977c478bd9Sstevel@tonic-gate 			    edtemp, errmsg(errno));
3981c0be37bSsn 			if ((ret < 0) || (tmpfp == NULL))
3991c0be37bSsn 				(void) unlink(edtemp);
4007c478bd9Sstevel@tonic-gate 			exit(1);
4017c478bd9Sstevel@tonic-gate 		} else
4027c478bd9Sstevel@tonic-gate 			seteuid(0);
4037c478bd9Sstevel@tonic-gate 
4047c478bd9Sstevel@tonic-gate 		copycron(tmpfp);
4057c478bd9Sstevel@tonic-gate 	} else {
4067c478bd9Sstevel@tonic-gate 		if (argc == 0)
4077c478bd9Sstevel@tonic-gate 			copycron(stdin);
4087c478bd9Sstevel@tonic-gate 		else if (seteuid(getuid()) != 0 || (fp = fopen(argv[0], "r"))
4097c478bd9Sstevel@tonic-gate 		    == NULL)
4107c478bd9Sstevel@tonic-gate 			crabort(BADOPEN);
4117c478bd9Sstevel@tonic-gate 		else {
4127c478bd9Sstevel@tonic-gate 			seteuid(0);
4137c478bd9Sstevel@tonic-gate 			copycron(fp);
4147c478bd9Sstevel@tonic-gate 		}
4157c478bd9Sstevel@tonic-gate 	}
4167c478bd9Sstevel@tonic-gate 	cron_sendmsg(ADD, login, login, CRON);
4177c478bd9Sstevel@tonic-gate /*
4187c478bd9Sstevel@tonic-gate  *	if (per_errno == 2)
4197c478bd9Sstevel@tonic-gate  *		fprintf(stderr, gettext(WARNSHELL));
4207c478bd9Sstevel@tonic-gate  */
4217c478bd9Sstevel@tonic-gate 	return (0);
4227c478bd9Sstevel@tonic-gate }
4237c478bd9Sstevel@tonic-gate 
4247c478bd9Sstevel@tonic-gate static void
copycron(FILE * fp)42519803d09SToomas Soome copycron(FILE *fp)
4267c478bd9Sstevel@tonic-gate {
4277c478bd9Sstevel@tonic-gate 	FILE *tfp;
4287c478bd9Sstevel@tonic-gate 	char pid[6], *tnam_end;
4297c478bd9Sstevel@tonic-gate 	int t;
4305b08e637SChris Gerhard 	char buf[LINE_MAX];
4316b734416SAndy Fiddaman 	cferror_t cferr;
4327c478bd9Sstevel@tonic-gate 
4337c478bd9Sstevel@tonic-gate 	sprintf(pid, "%-5d", getpid());
4347c478bd9Sstevel@tonic-gate 	tnam = xmalloc(strlen(CRONDIR)+strlen(TMPFILE)+7);
4357c478bd9Sstevel@tonic-gate 	strcat(strcat(strcat(strcpy(tnam, CRONDIR), "/"), TMPFILE), pid);
4367c478bd9Sstevel@tonic-gate 	/* cut trailing blanks */
4377c478bd9Sstevel@tonic-gate 	tnam_end = strchr(tnam, ' ');
4387c478bd9Sstevel@tonic-gate 	if (tnam_end != NULL)
4397c478bd9Sstevel@tonic-gate 		*tnam_end = 0;
4407c478bd9Sstevel@tonic-gate 	/* catch SIGINT, SIGHUP, SIGQUIT signals */
4417c478bd9Sstevel@tonic-gate 	if (signal(SIGINT, catch) == SIG_IGN)
4427c478bd9Sstevel@tonic-gate 		signal(SIGINT, SIG_IGN);
4437c478bd9Sstevel@tonic-gate 	if (signal(SIGHUP, catch) == SIG_IGN) signal(SIGHUP, SIG_IGN);
4447c478bd9Sstevel@tonic-gate 	if (signal(SIGQUIT, catch) == SIG_IGN) signal(SIGQUIT, SIG_IGN);
4457c478bd9Sstevel@tonic-gate 	if (signal(SIGTERM, catch) == SIG_IGN) signal(SIGTERM, SIG_IGN);
4467c478bd9Sstevel@tonic-gate 	if ((t = creat(tnam, CRMODE)) == -1) crabort(BADCREATE);
4477c478bd9Sstevel@tonic-gate 	if ((tfp = fdopen(t, "w")) == NULL) {
4487c478bd9Sstevel@tonic-gate 		unlink(tnam);
4497c478bd9Sstevel@tonic-gate 		crabort(BADCREATE);
4507c478bd9Sstevel@tonic-gate 	}
4517c478bd9Sstevel@tonic-gate 	err = 0;	/* if errors found, err set to 1 */
4527c478bd9Sstevel@tonic-gate 	while (fgets(line, CTLINESIZE, fp) != NULL) {
4537c478bd9Sstevel@tonic-gate 		cursor = 0;
4547c478bd9Sstevel@tonic-gate 		while (line[cursor] == ' ' || line[cursor] == '\t')
4557c478bd9Sstevel@tonic-gate 			cursor++;
4567c478bd9Sstevel@tonic-gate 		/* fix for 1039689 - treat blank line like a comment */
4577c478bd9Sstevel@tonic-gate 		if (line[cursor] == '#' || line[cursor] == '\n')
4587c478bd9Sstevel@tonic-gate 			goto cont;
4595b08e637SChris Gerhard 
4605b08e637SChris Gerhard 		if (strncmp(&line[cursor], ENV_TZ, strlen(ENV_TZ)) == 0) {
4615b08e637SChris Gerhard 			char *x;
4625b08e637SChris Gerhard 
4635b08e637SChris Gerhard 			strncpy(buf, &line[cursor + strlen(ENV_TZ)],
4645b08e637SChris Gerhard 			    sizeof (buf));
4655b08e637SChris Gerhard 			if ((x = strchr(buf, '\n')) != NULL)
46619803d09SToomas Soome 				*x = '\0';
4675b08e637SChris Gerhard 
4685b08e637SChris Gerhard 			if (isvalid_tz(buf, NULL, _VTZ_ALL)) {
4695b08e637SChris Gerhard 				goto cont;
4705b08e637SChris Gerhard 			} else {
4715b08e637SChris Gerhard 				err = 1;
4725b08e637SChris Gerhard 				fprintf(stderr, BAD_TZ, &line[cursor]);
4735b08e637SChris Gerhard 				continue;
4745b08e637SChris Gerhard 			}
4755b08e637SChris Gerhard 		} else if (strncmp(&line[cursor], ENV_SHELL,
4765b08e637SChris Gerhard 		    strlen(ENV_SHELL)) == 0) {
4775b08e637SChris Gerhard 			char *x;
4785b08e637SChris Gerhard 
4795b08e637SChris Gerhard 			strncpy(buf, &line[cursor + strlen(ENV_SHELL)],
4805b08e637SChris Gerhard 			    sizeof (buf));
4815b08e637SChris Gerhard 			if ((x = strchr(buf, '\n')) != NULL)
48219803d09SToomas Soome 				*x = '\0';
4835b08e637SChris Gerhard 
4845b08e637SChris Gerhard 			if (isvalid_shell(buf)) {
4855b08e637SChris Gerhard 				goto cont;
4865b08e637SChris Gerhard 			} else {
4875b08e637SChris Gerhard 				err = 1;
4885b08e637SChris Gerhard 				fprintf(stderr, BAD_SHELL, &line[cursor]);
4895b08e637SChris Gerhard 				continue;
4905b08e637SChris Gerhard 			}
4915b08e637SChris Gerhard 		} else if (strncmp(&line[cursor], ENV_HOME,
4925b08e637SChris Gerhard 		    strlen(ENV_HOME)) == 0) {
4935b08e637SChris Gerhard 			char *x;
4945b08e637SChris Gerhard 
4955b08e637SChris Gerhard 			strncpy(buf, &line[cursor + strlen(ENV_HOME)],
4965b08e637SChris Gerhard 			    sizeof (buf));
4975b08e637SChris Gerhard 			if ((x = strchr(buf, '\n')) != NULL)
49819803d09SToomas Soome 				*x = '\0';
4995b08e637SChris Gerhard 			if (chdir(buf) == 0) {
5005b08e637SChris Gerhard 				goto cont;
5015b08e637SChris Gerhard 			} else {
5025b08e637SChris Gerhard 				err = 1;
5035b08e637SChris Gerhard 				fprintf(stderr, BAD_HOME, &line[cursor],
5045b08e637SChris Gerhard 				    strerror(errno));
5055b08e637SChris Gerhard 				continue;
5065b08e637SChris Gerhard 			}
5075b08e637SChris Gerhard 		}
5085b08e637SChris Gerhard 
5096b734416SAndy Fiddaman 		if ((cferr = next_field(0, 59, line, &cursor, NULL)) != CFOK ||
5106b734416SAndy Fiddaman 		    (cferr = next_field(0, 23, line, &cursor, NULL)) != CFOK ||
5116b734416SAndy Fiddaman 		    (cferr = next_field(1, 31, line, &cursor, NULL)) != CFOK ||
5126b734416SAndy Fiddaman 		    (cferr = next_field(1, 12, line, &cursor, NULL)) != CFOK ||
5136b734416SAndy Fiddaman 		    (cferr = next_field(0, 6, line, &cursor, NULL)) != CFOK) {
5146b734416SAndy Fiddaman 			switch (cferr) {
5156b734416SAndy Fiddaman 			case CFEOLN:
5166b734416SAndy Fiddaman 				cerror(EOLN);
5176b734416SAndy Fiddaman 				break;
5186b734416SAndy Fiddaman 			case CFUNEXPECT:
5196b734416SAndy Fiddaman 				cerror(UNEXPECT);
5206b734416SAndy Fiddaman 				break;
5216b734416SAndy Fiddaman 			case CFOUTOFBOUND:
5226b734416SAndy Fiddaman 				cerror(OUTOFBOUND);
5236b734416SAndy Fiddaman 				break;
5246b734416SAndy Fiddaman 			case CFEOVERFLOW:
5256b734416SAndy Fiddaman 				cerror(OVERFLOW);
5266b734416SAndy Fiddaman 				break;
5276b734416SAndy Fiddaman 			case CFENOMEM:
5286b734416SAndy Fiddaman 				(void) fprintf(stderr, "Out of memory\n");
5296b734416SAndy Fiddaman 				exit(55);
5306b734416SAndy Fiddaman 				break;
5316b734416SAndy Fiddaman 			default:
5326b734416SAndy Fiddaman 				break;
5336b734416SAndy Fiddaman 			}
5346b734416SAndy Fiddaman 			continue;
5356b734416SAndy Fiddaman 		}
5366b734416SAndy Fiddaman 
5377c478bd9Sstevel@tonic-gate 		if (line[++cursor] == '\0') {
5387c478bd9Sstevel@tonic-gate 			cerror(EOLN);
5397c478bd9Sstevel@tonic-gate 			continue;
5407c478bd9Sstevel@tonic-gate 		}
5417c478bd9Sstevel@tonic-gate cont:
5427c478bd9Sstevel@tonic-gate 		if (fputs(line, tfp) == EOF) {
5437c478bd9Sstevel@tonic-gate 			unlink(tnam);
5447c478bd9Sstevel@tonic-gate 			crabort(BADCREATE);
5457c478bd9Sstevel@tonic-gate 		}
5467c478bd9Sstevel@tonic-gate 	}
5477c478bd9Sstevel@tonic-gate 	fclose(fp);
5487c478bd9Sstevel@tonic-gate 	fclose(tfp);
5497c478bd9Sstevel@tonic-gate 
5507c478bd9Sstevel@tonic-gate 	/* audit differences between old and new crontabs */
5517c478bd9Sstevel@tonic-gate 	audit_crontab_modify(cf, tnam, err);
5527c478bd9Sstevel@tonic-gate 
5537c478bd9Sstevel@tonic-gate 	if (!err) {
5547c478bd9Sstevel@tonic-gate 		/* make file tfp the new crontab */
5557c478bd9Sstevel@tonic-gate 		unlink(cf);
5567c478bd9Sstevel@tonic-gate 		if (link(tnam, cf) == -1) {
5577c478bd9Sstevel@tonic-gate 			unlink(tnam);
5587c478bd9Sstevel@tonic-gate 			crabort(BADCREATE);
5597c478bd9Sstevel@tonic-gate 		}
560b0d0a1c8SViswanathan Kannappan 	} else {
561b0d0a1c8SViswanathan Kannappan 		crabort(ERRSFND);
562b0d0a1c8SViswanathan Kannappan 	}
5637c478bd9Sstevel@tonic-gate 	unlink(tnam);
5647c478bd9Sstevel@tonic-gate }
5657c478bd9Sstevel@tonic-gate 
5667c478bd9Sstevel@tonic-gate static void
cerror(char * msg)56719803d09SToomas Soome cerror(char *msg)
5687c478bd9Sstevel@tonic-gate {
5697c478bd9Sstevel@tonic-gate 	fprintf(stderr, gettext("%scrontab: error on previous line; %s\n"),
5707c478bd9Sstevel@tonic-gate 	    line, msg);
5717c478bd9Sstevel@tonic-gate 	err = 1;
5727c478bd9Sstevel@tonic-gate }
5737c478bd9Sstevel@tonic-gate 
5747c478bd9Sstevel@tonic-gate 
5757c478bd9Sstevel@tonic-gate static void
catch(int x)5767c478bd9Sstevel@tonic-gate catch(int x)
5777c478bd9Sstevel@tonic-gate {
5787c478bd9Sstevel@tonic-gate 	unlink(tnam);
5797c478bd9Sstevel@tonic-gate 	exit(1);
5807c478bd9Sstevel@tonic-gate }
5817c478bd9Sstevel@tonic-gate 
5827c478bd9Sstevel@tonic-gate static void
crabort(char * msg)58319803d09SToomas Soome crabort(char *msg)
5847c478bd9Sstevel@tonic-gate {
5857c478bd9Sstevel@tonic-gate 	int sverrno;
5867c478bd9Sstevel@tonic-gate 
5877c478bd9Sstevel@tonic-gate 	if (strcmp(edtemp, "") != 0) {
5887c478bd9Sstevel@tonic-gate 		sverrno = errno;
5897c478bd9Sstevel@tonic-gate 		(void) unlink(edtemp);
5907c478bd9Sstevel@tonic-gate 		errno = sverrno;
5917c478bd9Sstevel@tonic-gate 	}
5927c478bd9Sstevel@tonic-gate 	if (tnam != NULL) {
5937c478bd9Sstevel@tonic-gate 		sverrno = errno;
5947c478bd9Sstevel@tonic-gate 		(void) unlink(tnam);
5957c478bd9Sstevel@tonic-gate 		errno = sverrno;
5967c478bd9Sstevel@tonic-gate 	}
5977c478bd9Sstevel@tonic-gate 	fprintf(stderr, "crontab: %s\n", gettext(msg));
5987c478bd9Sstevel@tonic-gate 	exit(1);
5997c478bd9Sstevel@tonic-gate }
600