17c478bd9Sstevel@tonic-gate /* 27c478bd9Sstevel@tonic-gate * CDDL HEADER START 37c478bd9Sstevel@tonic-gate * 47c478bd9Sstevel@tonic-gate * The contents of this file are subject to the terms of the 53010f05bSdp * Common Development and Distribution License (the "License"). 63010f05bSdp * You may not use this file except in compliance with the License. 77c478bd9Sstevel@tonic-gate * 87c478bd9Sstevel@tonic-gate * You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE 97c478bd9Sstevel@tonic-gate * or http://www.opensolaris.org/os/licensing. 107c478bd9Sstevel@tonic-gate * See the License for the specific language governing permissions 117c478bd9Sstevel@tonic-gate * and limitations under the License. 127c478bd9Sstevel@tonic-gate * 137c478bd9Sstevel@tonic-gate * When distributing Covered Code, include this CDDL HEADER in each 147c478bd9Sstevel@tonic-gate * file and include the License file at usr/src/OPENSOLARIS.LICENSE. 157c478bd9Sstevel@tonic-gate * If applicable, add the following below this CDDL HEADER, with the 167c478bd9Sstevel@tonic-gate * fields enclosed by brackets "[]" replaced with your own identifying 177c478bd9Sstevel@tonic-gate * information: Portions Copyright [yyyy] [name of copyright owner] 187c478bd9Sstevel@tonic-gate * 197c478bd9Sstevel@tonic-gate * CDDL HEADER END 207c478bd9Sstevel@tonic-gate */ 217c478bd9Sstevel@tonic-gate /* 22b0d0a1c8SViswanathan Kannappan * Copyright 2009 Sun Microsystems, Inc. All rights reserved. 237c478bd9Sstevel@tonic-gate * Use is subject to license terms. 247c478bd9Sstevel@tonic-gate */ 257c478bd9Sstevel@tonic-gate /* Copyright (c) 1984, 1986, 1987, 1988, 1989 AT&T */ 2619803d09SToomas Soome /* All Rights Reserved */ 277c478bd9Sstevel@tonic-gate 286b734416SAndy Fiddaman /* 29*6863ede2SAndy Fiddaman * Copyright 2020 OmniOS Community Edition (OmniOSce) Association. 306b734416SAndy Fiddaman */ 317c478bd9Sstevel@tonic-gate 327c478bd9Sstevel@tonic-gate #include <sys/types.h> 337c478bd9Sstevel@tonic-gate #include <sys/stat.h> 347c478bd9Sstevel@tonic-gate #include <sys/types.h> 357c478bd9Sstevel@tonic-gate #include <sys/wait.h> 367c478bd9Sstevel@tonic-gate #include <errno.h> 377c478bd9Sstevel@tonic-gate #include <signal.h> 387c478bd9Sstevel@tonic-gate #include <stdio.h> 397c478bd9Sstevel@tonic-gate #include <stdlib.h> 407c478bd9Sstevel@tonic-gate #include <string.h> 417c478bd9Sstevel@tonic-gate #include <fcntl.h> 427c478bd9Sstevel@tonic-gate #include <ctype.h> 437c478bd9Sstevel@tonic-gate #include <pwd.h> 447c478bd9Sstevel@tonic-gate #include <unistd.h> 457c478bd9Sstevel@tonic-gate #include <locale.h> 467c478bd9Sstevel@tonic-gate #include <nl_types.h> 477c478bd9Sstevel@tonic-gate #include <langinfo.h> 487c478bd9Sstevel@tonic-gate #include <libintl.h> 497c478bd9Sstevel@tonic-gate #include <security/pam_appl.h> 505b08e637SChris Gerhard #include <limits.h> 515b08e637SChris Gerhard #include <libzoneinfo.h> 527c478bd9Sstevel@tonic-gate #include "cron.h" 533d63ea05Sas #include "getresponse.h" 547c478bd9Sstevel@tonic-gate 55d61d085dScf #if defined(XPG4) 56d61d085dScf #define VIPATH "/usr/xpg4/bin/vi" 57d61d085dScf #elif defined(XPG6) 58d61d085dScf #define VIPATH "/usr/xpg6/bin/vi" 59d61d085dScf #else 60d61d085dScf #define _XPG_NOTDEFINED 61d61d085dScf #define VIPATH "vi" 62d61d085dScf #endif 63d61d085dScf 647c478bd9Sstevel@tonic-gate #define TMPFILE "_cron" /* prefix for tmp file */ 657c478bd9Sstevel@tonic-gate #define CRMODE 0600 /* mode for creating crontabs */ 667c478bd9Sstevel@tonic-gate 677c478bd9Sstevel@tonic-gate #define BADCREATE \ 687c478bd9Sstevel@tonic-gate "can't create your crontab file in the crontab directory." 697c478bd9Sstevel@tonic-gate #define BADOPEN "can't open your crontab file." 707c478bd9Sstevel@tonic-gate #define BADSHELL \ 717c478bd9Sstevel@tonic-gate "because your login shell isn't /usr/bin/sh, you can't use cron." 727c478bd9Sstevel@tonic-gate #define WARNSHELL "warning: commands will be executed using /usr/bin/sh\n" 737c478bd9Sstevel@tonic-gate #define BADUSAGE \ 743010f05bSdp "usage:\n" \ 75*6863ede2SAndy Fiddaman "\tcrontab [-u username] [file]\n" \ 76*6863ede2SAndy Fiddaman "\tcrontab [-u username] { -e | -l | -r }\n" \ 77*6863ede2SAndy Fiddaman "\tcrontab { -e | -l | -r } [username]" 787c478bd9Sstevel@tonic-gate #define INVALIDUSER "you are not a valid user (no entry in /etc/passwd)." 797c478bd9Sstevel@tonic-gate #define NOTALLOWED "you are not authorized to use cron. Sorry." 807c478bd9Sstevel@tonic-gate #define NOTROOT \ 817c478bd9Sstevel@tonic-gate "you must be super-user to access another user's crontab file" 827c478bd9Sstevel@tonic-gate #define AUDITREJECT "The audit context for your shell has not been set." 837c478bd9Sstevel@tonic-gate #define EOLN "unexpected end of line." 847c478bd9Sstevel@tonic-gate #define UNEXPECT "unexpected character found in line." 857c478bd9Sstevel@tonic-gate #define OUTOFBOUND "number out of bounds." 866b734416SAndy Fiddaman #define OVERFLOW "too many elements." 877c478bd9Sstevel@tonic-gate #define ERRSFND "errors detected in input, no crontab file generated." 887c478bd9Sstevel@tonic-gate #define ED_ERROR \ 897c478bd9Sstevel@tonic-gate " The editor indicates that an error occurred while you were\n"\ 907c478bd9Sstevel@tonic-gate " editing the crontab data - usually a minor typing error.\n\n" 917c478bd9Sstevel@tonic-gate #define BADREAD "error reading your crontab file" 927c478bd9Sstevel@tonic-gate #define ED_PROMPT \ 933d63ea05Sas " Edit again, to ensure crontab information is intact (%s/%s)?\n"\ 943d63ea05Sas " ('%s' will discard edits.)" 957c478bd9Sstevel@tonic-gate #define NAMETOOLONG "login name too long" 965b08e637SChris Gerhard #define BAD_TZ "Timezone unrecognized in: %s" 975b08e637SChris Gerhard #define BAD_SHELL "Invalid shell specified: %s" 985b08e637SChris Gerhard #define BAD_HOME "Unable to access directory: %s\t%s\n" 997c478bd9Sstevel@tonic-gate 1007c478bd9Sstevel@tonic-gate extern int per_errno; 1017c478bd9Sstevel@tonic-gate 1027c478bd9Sstevel@tonic-gate extern int audit_crontab_modify(char *, char *, int); 1037c478bd9Sstevel@tonic-gate extern int audit_crontab_delete(char *, int); 1047c478bd9Sstevel@tonic-gate extern int audit_crontab_not_allowed(uid_t, char *); 1057c478bd9Sstevel@tonic-gate 1067c478bd9Sstevel@tonic-gate int err; 1077c478bd9Sstevel@tonic-gate int cursor; 1087c478bd9Sstevel@tonic-gate char *cf; 1097c478bd9Sstevel@tonic-gate char *tnam; 1107c478bd9Sstevel@tonic-gate char edtemp[5+13+1]; 1117c478bd9Sstevel@tonic-gate char line[CTLINESIZE]; 1127c478bd9Sstevel@tonic-gate static char login[UNAMESIZE]; 1137c478bd9Sstevel@tonic-gate 1143d63ea05Sas static void catch(int); 1153d63ea05Sas static void crabort(char *); 1163d63ea05Sas static void cerror(char *); 1173d63ea05Sas static void copycron(FILE *); 1187c478bd9Sstevel@tonic-gate 119032624d5Sbasabi int 120032624d5Sbasabi main(int argc, char **argv) 1217c478bd9Sstevel@tonic-gate { 1227c478bd9Sstevel@tonic-gate int c, r; 1237c478bd9Sstevel@tonic-gate int rflag = 0; 1247c478bd9Sstevel@tonic-gate int lflag = 0; 1257c478bd9Sstevel@tonic-gate int eflag = 0; 1267c478bd9Sstevel@tonic-gate int errflg = 0; 1277c478bd9Sstevel@tonic-gate char *pp; 1287c478bd9Sstevel@tonic-gate FILE *fp, *tmpfp; 1297c478bd9Sstevel@tonic-gate struct stat stbuf; 1307c478bd9Sstevel@tonic-gate struct passwd *pwp; 1317c478bd9Sstevel@tonic-gate time_t omodtime; 1327c478bd9Sstevel@tonic-gate char *editor; 1337c478bd9Sstevel@tonic-gate uid_t ruid; 1347c478bd9Sstevel@tonic-gate pid_t pid; 1357c478bd9Sstevel@tonic-gate int stat_loc; 1367c478bd9Sstevel@tonic-gate int ret; 1377c478bd9Sstevel@tonic-gate char real_login[UNAMESIZE]; 138*6863ede2SAndy Fiddaman char *user = NULL; 1397c478bd9Sstevel@tonic-gate int tmpfd = -1; 1407c478bd9Sstevel@tonic-gate pam_handle_t *pamh; 1417c478bd9Sstevel@tonic-gate int pam_error; 14278ae324cSSumanth Naropanth char *buf; 14378ae324cSSumanth Naropanth size_t buflen; 1447c478bd9Sstevel@tonic-gate 1457c478bd9Sstevel@tonic-gate (void) setlocale(LC_ALL, ""); 1467c478bd9Sstevel@tonic-gate #if !defined(TEXT_DOMAIN) /* Should be defined by cc -D */ 147*6863ede2SAndy Fiddaman #define TEXT_DOMAIN "SYS_TEST" /* Use this only if it wasn't */ 1487c478bd9Sstevel@tonic-gate #endif 1497c478bd9Sstevel@tonic-gate (void) textdomain(TEXT_DOMAIN); 1503d63ea05Sas 1513d63ea05Sas if (init_yes() < 0) { 1523d63ea05Sas (void) fprintf(stderr, gettext(ERR_MSG_INIT_YES), 1533d63ea05Sas strerror(errno)); 1543d63ea05Sas exit(1); 1553d63ea05Sas } 1567c478bd9Sstevel@tonic-gate 157*6863ede2SAndy Fiddaman while ((c = getopt(argc, argv, "elru:")) != EOF) { 1587c478bd9Sstevel@tonic-gate switch (c) { 1597c478bd9Sstevel@tonic-gate case 'e': 1607c478bd9Sstevel@tonic-gate eflag++; 1617c478bd9Sstevel@tonic-gate break; 1627c478bd9Sstevel@tonic-gate case 'l': 1637c478bd9Sstevel@tonic-gate lflag++; 1647c478bd9Sstevel@tonic-gate break; 1657c478bd9Sstevel@tonic-gate case 'r': 1667c478bd9Sstevel@tonic-gate rflag++; 1677c478bd9Sstevel@tonic-gate break; 168*6863ede2SAndy Fiddaman case 'u': 169*6863ede2SAndy Fiddaman user = optarg; 170*6863ede2SAndy Fiddaman break; 1717c478bd9Sstevel@tonic-gate case '?': 1727c478bd9Sstevel@tonic-gate errflg++; 1737c478bd9Sstevel@tonic-gate break; 1747c478bd9Sstevel@tonic-gate } 175*6863ede2SAndy Fiddaman } 176*6863ede2SAndy Fiddaman 177*6863ede2SAndy Fiddaman argc -= optind; 178*6863ede2SAndy Fiddaman argv += optind; 1797c478bd9Sstevel@tonic-gate 1807c478bd9Sstevel@tonic-gate if (eflag + lflag + rflag > 1) 1817c478bd9Sstevel@tonic-gate errflg++; 1827c478bd9Sstevel@tonic-gate 183*6863ede2SAndy Fiddaman if ((eflag || lflag || rflag) && argc > 0) { 184*6863ede2SAndy Fiddaman if (user != NULL) 185*6863ede2SAndy Fiddaman errflg++; 186*6863ede2SAndy Fiddaman else 187*6863ede2SAndy Fiddaman user = *argv; 188*6863ede2SAndy Fiddaman } 189*6863ede2SAndy Fiddaman 1907c478bd9Sstevel@tonic-gate if (errflg || argc > 1) 1917c478bd9Sstevel@tonic-gate crabort(BADUSAGE); 1927c478bd9Sstevel@tonic-gate 1937c478bd9Sstevel@tonic-gate ruid = getuid(); 1947c478bd9Sstevel@tonic-gate if ((pwp = getpwuid(ruid)) == NULL) 1957c478bd9Sstevel@tonic-gate crabort(INVALIDUSER); 1967c478bd9Sstevel@tonic-gate 1977c478bd9Sstevel@tonic-gate if (strlcpy(real_login, pwp->pw_name, sizeof (real_login)) 198*6863ede2SAndy Fiddaman >= sizeof (real_login)) { 1997c478bd9Sstevel@tonic-gate crabort(NAMETOOLONG); 200*6863ede2SAndy Fiddaman } 2017c478bd9Sstevel@tonic-gate 202*6863ede2SAndy Fiddaman if (user != NULL) { 203*6863ede2SAndy Fiddaman if ((pwp = getpwnam(user)) == NULL) 2047c478bd9Sstevel@tonic-gate crabort(INVALIDUSER); 2057c478bd9Sstevel@tonic-gate 206d1419d5aSNobutomo Nakano if (!cron_admin(real_login)) { 2077c478bd9Sstevel@tonic-gate if (pwp->pw_uid != ruid) 2087c478bd9Sstevel@tonic-gate crabort(NOTROOT); 2097c478bd9Sstevel@tonic-gate else 2107c478bd9Sstevel@tonic-gate pp = getuser(ruid); 211*6863ede2SAndy Fiddaman } else { 212*6863ede2SAndy Fiddaman pp = user; 213*6863ede2SAndy Fiddaman } 2147c478bd9Sstevel@tonic-gate } else { 2157c478bd9Sstevel@tonic-gate pp = getuser(ruid); 2167c478bd9Sstevel@tonic-gate } 2177c478bd9Sstevel@tonic-gate 2187c478bd9Sstevel@tonic-gate if (pp == NULL) { 2197c478bd9Sstevel@tonic-gate if (per_errno == 2) 2207c478bd9Sstevel@tonic-gate crabort(BADSHELL); 2217c478bd9Sstevel@tonic-gate else 2227c478bd9Sstevel@tonic-gate crabort(INVALIDUSER); 2237c478bd9Sstevel@tonic-gate } 2247c478bd9Sstevel@tonic-gate if (strlcpy(login, pp, sizeof (login)) >= sizeof (login)) 2257c478bd9Sstevel@tonic-gate crabort(NAMETOOLONG); 2267c478bd9Sstevel@tonic-gate if (!allowed(login, CRONALLOW, CRONDENY)) 2277c478bd9Sstevel@tonic-gate crabort(NOTALLOWED); 2287c478bd9Sstevel@tonic-gate 2297c478bd9Sstevel@tonic-gate /* Do account validation check */ 2307c478bd9Sstevel@tonic-gate pam_error = pam_start("cron", pp, NULL, &pamh); 2317c478bd9Sstevel@tonic-gate if (pam_error != PAM_SUCCESS) { 2327c478bd9Sstevel@tonic-gate crabort((char *)pam_strerror(pamh, pam_error)); 2337c478bd9Sstevel@tonic-gate } 2347c478bd9Sstevel@tonic-gate pam_error = pam_acct_mgmt(pamh, PAM_SILENT); 2357c478bd9Sstevel@tonic-gate if (pam_error != PAM_SUCCESS) { 2367c478bd9Sstevel@tonic-gate (void) fprintf(stderr, gettext("Warning - Invalid account: " 2377c478bd9Sstevel@tonic-gate "'%s' not allowed to execute cronjobs\n"), pp); 2387c478bd9Sstevel@tonic-gate } 2397c478bd9Sstevel@tonic-gate (void) pam_end(pamh, PAM_SUCCESS); 2407c478bd9Sstevel@tonic-gate 2417c478bd9Sstevel@tonic-gate 2427c478bd9Sstevel@tonic-gate /* check for unaudited shell */ 2437c478bd9Sstevel@tonic-gate if (audit_crontab_not_allowed(ruid, pp)) 2447c478bd9Sstevel@tonic-gate crabort(AUDITREJECT); 2457c478bd9Sstevel@tonic-gate 2467c478bd9Sstevel@tonic-gate cf = xmalloc(strlen(CRONDIR)+strlen(login)+2); 2477c478bd9Sstevel@tonic-gate strcat(strcat(strcpy(cf, CRONDIR), "/"), login); 2487c478bd9Sstevel@tonic-gate 2497c478bd9Sstevel@tonic-gate if (rflag) { 2507c478bd9Sstevel@tonic-gate r = unlink(cf); 2517c478bd9Sstevel@tonic-gate cron_sendmsg(DELETE, login, login, CRON); 2527c478bd9Sstevel@tonic-gate audit_crontab_delete(cf, r); 2537c478bd9Sstevel@tonic-gate exit(0); 2547c478bd9Sstevel@tonic-gate } 2557c478bd9Sstevel@tonic-gate if (lflag) { 2567c478bd9Sstevel@tonic-gate if ((fp = fopen(cf, "r")) == NULL) 2577c478bd9Sstevel@tonic-gate crabort(BADOPEN); 2587c478bd9Sstevel@tonic-gate while (fgets(line, CTLINESIZE, fp) != NULL) 2597c478bd9Sstevel@tonic-gate fputs(line, stdout); 2607c478bd9Sstevel@tonic-gate fclose(fp); 2617c478bd9Sstevel@tonic-gate exit(0); 2627c478bd9Sstevel@tonic-gate } 2637c478bd9Sstevel@tonic-gate if (eflag) { 2647c478bd9Sstevel@tonic-gate if ((fp = fopen(cf, "r")) == NULL) { 2657c478bd9Sstevel@tonic-gate if (errno != ENOENT) 2667c478bd9Sstevel@tonic-gate crabort(BADOPEN); 2677c478bd9Sstevel@tonic-gate } 2687c478bd9Sstevel@tonic-gate (void) strcpy(edtemp, "/tmp/crontabXXXXXX"); 2697c478bd9Sstevel@tonic-gate tmpfd = mkstemp(edtemp); 2707c478bd9Sstevel@tonic-gate if (fchown(tmpfd, ruid, -1) == -1) { 2717c478bd9Sstevel@tonic-gate (void) close(tmpfd); 2727c478bd9Sstevel@tonic-gate crabort("fchown of temporary file failed"); 2737c478bd9Sstevel@tonic-gate } 2747c478bd9Sstevel@tonic-gate (void) close(tmpfd); 2757c478bd9Sstevel@tonic-gate /* 2767c478bd9Sstevel@tonic-gate * Fork off a child with user's permissions, 2777c478bd9Sstevel@tonic-gate * to edit the crontab file 2787c478bd9Sstevel@tonic-gate */ 2797c478bd9Sstevel@tonic-gate if ((pid = fork()) == (pid_t)-1) 2807c478bd9Sstevel@tonic-gate crabort("fork failed"); 2817c478bd9Sstevel@tonic-gate if (pid == 0) { /* child process */ 2827c478bd9Sstevel@tonic-gate /* give up super-user privileges. */ 2837c478bd9Sstevel@tonic-gate setuid(ruid); 2847c478bd9Sstevel@tonic-gate if ((tmpfp = fopen(edtemp, "w")) == NULL) 2857c478bd9Sstevel@tonic-gate crabort("can't create temporary file"); 2867c478bd9Sstevel@tonic-gate if (fp != NULL) { 2877c478bd9Sstevel@tonic-gate /* 2887c478bd9Sstevel@tonic-gate * Copy user's crontab file to temporary file. 2897c478bd9Sstevel@tonic-gate */ 2907c478bd9Sstevel@tonic-gate while (fgets(line, CTLINESIZE, fp) != NULL) { 2917c478bd9Sstevel@tonic-gate fputs(line, tmpfp); 2927c478bd9Sstevel@tonic-gate if (ferror(tmpfp)) { 2937c478bd9Sstevel@tonic-gate fclose(fp); 2947c478bd9Sstevel@tonic-gate fclose(tmpfp); 2957c478bd9Sstevel@tonic-gate crabort("write error on" 2967c478bd9Sstevel@tonic-gate "temporary file"); 2977c478bd9Sstevel@tonic-gate } 2987c478bd9Sstevel@tonic-gate } 2997c478bd9Sstevel@tonic-gate if (ferror(fp)) { 3007c478bd9Sstevel@tonic-gate fclose(fp); 3017c478bd9Sstevel@tonic-gate fclose(tmpfp); 3027c478bd9Sstevel@tonic-gate crabort(BADREAD); 3037c478bd9Sstevel@tonic-gate } 3047c478bd9Sstevel@tonic-gate fclose(fp); 3057c478bd9Sstevel@tonic-gate } 3067c478bd9Sstevel@tonic-gate if (fclose(tmpfp) == EOF) 3077c478bd9Sstevel@tonic-gate crabort("write error on temporary file"); 3087c478bd9Sstevel@tonic-gate if (stat(edtemp, &stbuf) < 0) 3097c478bd9Sstevel@tonic-gate crabort("can't stat temporary file"); 3107c478bd9Sstevel@tonic-gate omodtime = stbuf.st_mtime; 311d61d085dScf #ifdef _XPG_NOTDEFINED 3127c478bd9Sstevel@tonic-gate editor = getenv("VISUAL"); 313d61d085dScf if (editor == NULL) { 314d61d085dScf #endif 3157c478bd9Sstevel@tonic-gate editor = getenv("EDITOR"); 316d61d085dScf if (editor == NULL) 317d61d085dScf editor = VIPATH; 318d61d085dScf #ifdef _XPG_NOTDEFINED 319d61d085dScf } 320d61d085dScf #endif 32178ae324cSSumanth Naropanth buflen = strlen(editor) + strlen(edtemp) + 2; 32278ae324cSSumanth Naropanth buf = xmalloc(buflen); 32378ae324cSSumanth Naropanth (void) snprintf(buf, buflen, "%s %s", editor, edtemp); 3241c0be37bSsn 3257c478bd9Sstevel@tonic-gate sleep(1); 3267c478bd9Sstevel@tonic-gate 3277c478bd9Sstevel@tonic-gate while (1) { 32878ae324cSSumanth Naropanth ret = system(buf); 3291c0be37bSsn 3307c478bd9Sstevel@tonic-gate /* sanity checks */ 3317c478bd9Sstevel@tonic-gate if ((tmpfp = fopen(edtemp, "r")) == NULL) 3323d63ea05Sas crabort("can't open temporary file"); 3337c478bd9Sstevel@tonic-gate if (fstat(fileno(tmpfp), &stbuf) < 0) 3343d63ea05Sas crabort("can't stat temporary file"); 3357c478bd9Sstevel@tonic-gate if (stbuf.st_size == 0) 3363d63ea05Sas crabort("temporary file empty"); 3377c478bd9Sstevel@tonic-gate if (omodtime == stbuf.st_mtime) { 3383d63ea05Sas (void) unlink(edtemp); 3393d63ea05Sas fprintf(stderr, gettext( 3403d63ea05Sas "The crontab file was not" 3413d63ea05Sas " changed.\n")); 3423d63ea05Sas exit(1); 3437c478bd9Sstevel@tonic-gate } 34478ae324cSSumanth Naropanth if ((ret) && (errno != EINTR)) { 3451c0be37bSsn /* 3461c0be37bSsn * Some editors (like 'vi') can return 3471c0be37bSsn * a non-zero exit status even though 3481c0be37bSsn * everything is okay. Need to check. 3491c0be37bSsn */ 3501c0be37bSsn fprintf(stderr, gettext(ED_ERROR)); 3511c0be37bSsn fflush(stderr); 3521c0be37bSsn if (isatty(fileno(stdin))) { 3531c0be37bSsn /* Interactive */ 3541c0be37bSsn fprintf(stdout, 3551c0be37bSsn gettext(ED_PROMPT), 3561c0be37bSsn yesstr, nostr, nostr); 3571c0be37bSsn fflush(stdout); 3581c0be37bSsn 3591c0be37bSsn if (yes()) { 3601c0be37bSsn /* Edit again */ 3611c0be37bSsn continue; 3621c0be37bSsn } else { 3631c0be37bSsn /* Dump changes */ 3641c0be37bSsn (void) unlink(edtemp); 3651c0be37bSsn exit(1); 3661c0be37bSsn } 3677c478bd9Sstevel@tonic-gate } else { 3681c0be37bSsn /* 3691c0be37bSsn * Non-interactive, dump changes 3701c0be37bSsn */ 3717c478bd9Sstevel@tonic-gate (void) unlink(edtemp); 3727c478bd9Sstevel@tonic-gate exit(1); 3737c478bd9Sstevel@tonic-gate } 3747c478bd9Sstevel@tonic-gate } 3751c0be37bSsn exit(0); 3767c478bd9Sstevel@tonic-gate } /* while (1) */ 3777c478bd9Sstevel@tonic-gate } 3787c478bd9Sstevel@tonic-gate 3797c478bd9Sstevel@tonic-gate /* fix for 1125555 - ignore common signals while waiting */ 3807c478bd9Sstevel@tonic-gate (void) signal(SIGINT, SIG_IGN); 3817c478bd9Sstevel@tonic-gate (void) signal(SIGHUP, SIG_IGN); 3827c478bd9Sstevel@tonic-gate (void) signal(SIGQUIT, SIG_IGN); 3837c478bd9Sstevel@tonic-gate (void) signal(SIGTERM, SIG_IGN); 3847c478bd9Sstevel@tonic-gate wait(&stat_loc); 3857c478bd9Sstevel@tonic-gate if ((stat_loc & 0xFF00) != 0) 3867c478bd9Sstevel@tonic-gate exit(1); 3877c478bd9Sstevel@tonic-gate 3881c0be37bSsn /* 3891c0be37bSsn * unlink edtemp as 'ruid'. The file contents will be held 3901c0be37bSsn * since we open the file descriptor 'tmpfp' before calling 3911c0be37bSsn * unlink. 3921c0be37bSsn */ 3931c0be37bSsn if (((ret = seteuid(ruid)) < 0) || 3941c0be37bSsn ((tmpfp = fopen(edtemp, "r")) == NULL) || 3951c0be37bSsn (unlink(edtemp) == -1)) { 3967c478bd9Sstevel@tonic-gate fprintf(stderr, "crontab: %s: %s\n", 3977c478bd9Sstevel@tonic-gate edtemp, errmsg(errno)); 3981c0be37bSsn if ((ret < 0) || (tmpfp == NULL)) 3991c0be37bSsn (void) unlink(edtemp); 4007c478bd9Sstevel@tonic-gate exit(1); 4017c478bd9Sstevel@tonic-gate } else 4027c478bd9Sstevel@tonic-gate seteuid(0); 4037c478bd9Sstevel@tonic-gate 4047c478bd9Sstevel@tonic-gate copycron(tmpfp); 4057c478bd9Sstevel@tonic-gate } else { 4067c478bd9Sstevel@tonic-gate if (argc == 0) 4077c478bd9Sstevel@tonic-gate copycron(stdin); 4087c478bd9Sstevel@tonic-gate else if (seteuid(getuid()) != 0 || (fp = fopen(argv[0], "r")) 4097c478bd9Sstevel@tonic-gate == NULL) 4107c478bd9Sstevel@tonic-gate crabort(BADOPEN); 4117c478bd9Sstevel@tonic-gate else { 4127c478bd9Sstevel@tonic-gate seteuid(0); 4137c478bd9Sstevel@tonic-gate copycron(fp); 4147c478bd9Sstevel@tonic-gate } 4157c478bd9Sstevel@tonic-gate } 4167c478bd9Sstevel@tonic-gate cron_sendmsg(ADD, login, login, CRON); 4177c478bd9Sstevel@tonic-gate /* 4187c478bd9Sstevel@tonic-gate * if (per_errno == 2) 4197c478bd9Sstevel@tonic-gate * fprintf(stderr, gettext(WARNSHELL)); 4207c478bd9Sstevel@tonic-gate */ 4217c478bd9Sstevel@tonic-gate return (0); 4227c478bd9Sstevel@tonic-gate } 4237c478bd9Sstevel@tonic-gate 4247c478bd9Sstevel@tonic-gate static void 42519803d09SToomas Soome copycron(FILE *fp) 4267c478bd9Sstevel@tonic-gate { 4277c478bd9Sstevel@tonic-gate FILE *tfp; 4287c478bd9Sstevel@tonic-gate char pid[6], *tnam_end; 4297c478bd9Sstevel@tonic-gate int t; 4305b08e637SChris Gerhard char buf[LINE_MAX]; 4316b734416SAndy Fiddaman cferror_t cferr; 4327c478bd9Sstevel@tonic-gate 4337c478bd9Sstevel@tonic-gate sprintf(pid, "%-5d", getpid()); 4347c478bd9Sstevel@tonic-gate tnam = xmalloc(strlen(CRONDIR)+strlen(TMPFILE)+7); 4357c478bd9Sstevel@tonic-gate strcat(strcat(strcat(strcpy(tnam, CRONDIR), "/"), TMPFILE), pid); 4367c478bd9Sstevel@tonic-gate /* cut trailing blanks */ 4377c478bd9Sstevel@tonic-gate tnam_end = strchr(tnam, ' '); 4387c478bd9Sstevel@tonic-gate if (tnam_end != NULL) 4397c478bd9Sstevel@tonic-gate *tnam_end = 0; 4407c478bd9Sstevel@tonic-gate /* catch SIGINT, SIGHUP, SIGQUIT signals */ 4417c478bd9Sstevel@tonic-gate if (signal(SIGINT, catch) == SIG_IGN) 4427c478bd9Sstevel@tonic-gate signal(SIGINT, SIG_IGN); 4437c478bd9Sstevel@tonic-gate if (signal(SIGHUP, catch) == SIG_IGN) signal(SIGHUP, SIG_IGN); 4447c478bd9Sstevel@tonic-gate if (signal(SIGQUIT, catch) == SIG_IGN) signal(SIGQUIT, SIG_IGN); 4457c478bd9Sstevel@tonic-gate if (signal(SIGTERM, catch) == SIG_IGN) signal(SIGTERM, SIG_IGN); 4467c478bd9Sstevel@tonic-gate if ((t = creat(tnam, CRMODE)) == -1) crabort(BADCREATE); 4477c478bd9Sstevel@tonic-gate if ((tfp = fdopen(t, "w")) == NULL) { 4487c478bd9Sstevel@tonic-gate unlink(tnam); 4497c478bd9Sstevel@tonic-gate crabort(BADCREATE); 4507c478bd9Sstevel@tonic-gate } 4517c478bd9Sstevel@tonic-gate err = 0; /* if errors found, err set to 1 */ 4527c478bd9Sstevel@tonic-gate while (fgets(line, CTLINESIZE, fp) != NULL) { 4537c478bd9Sstevel@tonic-gate cursor = 0; 4547c478bd9Sstevel@tonic-gate while (line[cursor] == ' ' || line[cursor] == '\t') 4557c478bd9Sstevel@tonic-gate cursor++; 4567c478bd9Sstevel@tonic-gate /* fix for 1039689 - treat blank line like a comment */ 4577c478bd9Sstevel@tonic-gate if (line[cursor] == '#' || line[cursor] == '\n') 4587c478bd9Sstevel@tonic-gate goto cont; 4595b08e637SChris Gerhard 4605b08e637SChris Gerhard if (strncmp(&line[cursor], ENV_TZ, strlen(ENV_TZ)) == 0) { 4615b08e637SChris Gerhard char *x; 4625b08e637SChris Gerhard 4635b08e637SChris Gerhard strncpy(buf, &line[cursor + strlen(ENV_TZ)], 4645b08e637SChris Gerhard sizeof (buf)); 4655b08e637SChris Gerhard if ((x = strchr(buf, '\n')) != NULL) 46619803d09SToomas Soome *x = '\0'; 4675b08e637SChris Gerhard 4685b08e637SChris Gerhard if (isvalid_tz(buf, NULL, _VTZ_ALL)) { 4695b08e637SChris Gerhard goto cont; 4705b08e637SChris Gerhard } else { 4715b08e637SChris Gerhard err = 1; 4725b08e637SChris Gerhard fprintf(stderr, BAD_TZ, &line[cursor]); 4735b08e637SChris Gerhard continue; 4745b08e637SChris Gerhard } 4755b08e637SChris Gerhard } else if (strncmp(&line[cursor], ENV_SHELL, 4765b08e637SChris Gerhard strlen(ENV_SHELL)) == 0) { 4775b08e637SChris Gerhard char *x; 4785b08e637SChris Gerhard 4795b08e637SChris Gerhard strncpy(buf, &line[cursor + strlen(ENV_SHELL)], 4805b08e637SChris Gerhard sizeof (buf)); 4815b08e637SChris Gerhard if ((x = strchr(buf, '\n')) != NULL) 48219803d09SToomas Soome *x = '\0'; 4835b08e637SChris Gerhard 4845b08e637SChris Gerhard if (isvalid_shell(buf)) { 4855b08e637SChris Gerhard goto cont; 4865b08e637SChris Gerhard } else { 4875b08e637SChris Gerhard err = 1; 4885b08e637SChris Gerhard fprintf(stderr, BAD_SHELL, &line[cursor]); 4895b08e637SChris Gerhard continue; 4905b08e637SChris Gerhard } 4915b08e637SChris Gerhard } else if (strncmp(&line[cursor], ENV_HOME, 4925b08e637SChris Gerhard strlen(ENV_HOME)) == 0) { 4935b08e637SChris Gerhard char *x; 4945b08e637SChris Gerhard 4955b08e637SChris Gerhard strncpy(buf, &line[cursor + strlen(ENV_HOME)], 4965b08e637SChris Gerhard sizeof (buf)); 4975b08e637SChris Gerhard if ((x = strchr(buf, '\n')) != NULL) 49819803d09SToomas Soome *x = '\0'; 4995b08e637SChris Gerhard if (chdir(buf) == 0) { 5005b08e637SChris Gerhard goto cont; 5015b08e637SChris Gerhard } else { 5025b08e637SChris Gerhard err = 1; 5035b08e637SChris Gerhard fprintf(stderr, BAD_HOME, &line[cursor], 5045b08e637SChris Gerhard strerror(errno)); 5055b08e637SChris Gerhard continue; 5065b08e637SChris Gerhard } 5075b08e637SChris Gerhard } 5085b08e637SChris Gerhard 5096b734416SAndy Fiddaman if ((cferr = next_field(0, 59, line, &cursor, NULL)) != CFOK || 5106b734416SAndy Fiddaman (cferr = next_field(0, 23, line, &cursor, NULL)) != CFOK || 5116b734416SAndy Fiddaman (cferr = next_field(1, 31, line, &cursor, NULL)) != CFOK || 5126b734416SAndy Fiddaman (cferr = next_field(1, 12, line, &cursor, NULL)) != CFOK || 5136b734416SAndy Fiddaman (cferr = next_field(0, 6, line, &cursor, NULL)) != CFOK) { 5146b734416SAndy Fiddaman switch (cferr) { 5156b734416SAndy Fiddaman case CFEOLN: 5166b734416SAndy Fiddaman cerror(EOLN); 5176b734416SAndy Fiddaman break; 5186b734416SAndy Fiddaman case CFUNEXPECT: 5196b734416SAndy Fiddaman cerror(UNEXPECT); 5206b734416SAndy Fiddaman break; 5216b734416SAndy Fiddaman case CFOUTOFBOUND: 5226b734416SAndy Fiddaman cerror(OUTOFBOUND); 5236b734416SAndy Fiddaman break; 5246b734416SAndy Fiddaman case CFEOVERFLOW: 5256b734416SAndy Fiddaman cerror(OVERFLOW); 5266b734416SAndy Fiddaman break; 5276b734416SAndy Fiddaman case CFENOMEM: 5286b734416SAndy Fiddaman (void) fprintf(stderr, "Out of memory\n"); 5296b734416SAndy Fiddaman exit(55); 5306b734416SAndy Fiddaman break; 5316b734416SAndy Fiddaman default: 5326b734416SAndy Fiddaman break; 5336b734416SAndy Fiddaman } 5346b734416SAndy Fiddaman continue; 5356b734416SAndy Fiddaman } 5366b734416SAndy Fiddaman 5377c478bd9Sstevel@tonic-gate if (line[++cursor] == '\0') { 5387c478bd9Sstevel@tonic-gate cerror(EOLN); 5397c478bd9Sstevel@tonic-gate continue; 5407c478bd9Sstevel@tonic-gate } 5417c478bd9Sstevel@tonic-gate cont: 5427c478bd9Sstevel@tonic-gate if (fputs(line, tfp) == EOF) { 5437c478bd9Sstevel@tonic-gate unlink(tnam); 5447c478bd9Sstevel@tonic-gate crabort(BADCREATE); 5457c478bd9Sstevel@tonic-gate } 5467c478bd9Sstevel@tonic-gate } 5477c478bd9Sstevel@tonic-gate fclose(fp); 5487c478bd9Sstevel@tonic-gate fclose(tfp); 5497c478bd9Sstevel@tonic-gate 5507c478bd9Sstevel@tonic-gate /* audit differences between old and new crontabs */ 5517c478bd9Sstevel@tonic-gate audit_crontab_modify(cf, tnam, err); 5527c478bd9Sstevel@tonic-gate 5537c478bd9Sstevel@tonic-gate if (!err) { 5547c478bd9Sstevel@tonic-gate /* make file tfp the new crontab */ 5557c478bd9Sstevel@tonic-gate unlink(cf); 5567c478bd9Sstevel@tonic-gate if (link(tnam, cf) == -1) { 5577c478bd9Sstevel@tonic-gate unlink(tnam); 5587c478bd9Sstevel@tonic-gate crabort(BADCREATE); 5597c478bd9Sstevel@tonic-gate } 560b0d0a1c8SViswanathan Kannappan } else { 561b0d0a1c8SViswanathan Kannappan crabort(ERRSFND); 562b0d0a1c8SViswanathan Kannappan } 5637c478bd9Sstevel@tonic-gate unlink(tnam); 5647c478bd9Sstevel@tonic-gate } 5657c478bd9Sstevel@tonic-gate 5667c478bd9Sstevel@tonic-gate static void 56719803d09SToomas Soome cerror(char *msg) 5687c478bd9Sstevel@tonic-gate { 5697c478bd9Sstevel@tonic-gate fprintf(stderr, gettext("%scrontab: error on previous line; %s\n"), 5707c478bd9Sstevel@tonic-gate line, msg); 5717c478bd9Sstevel@tonic-gate err = 1; 5727c478bd9Sstevel@tonic-gate } 5737c478bd9Sstevel@tonic-gate 5747c478bd9Sstevel@tonic-gate 5757c478bd9Sstevel@tonic-gate static void 5767c478bd9Sstevel@tonic-gate catch(int x) 5777c478bd9Sstevel@tonic-gate { 5787c478bd9Sstevel@tonic-gate unlink(tnam); 5797c478bd9Sstevel@tonic-gate exit(1); 5807c478bd9Sstevel@tonic-gate } 5817c478bd9Sstevel@tonic-gate 5827c478bd9Sstevel@tonic-gate static void 58319803d09SToomas Soome crabort(char *msg) 5847c478bd9Sstevel@tonic-gate { 5857c478bd9Sstevel@tonic-gate int sverrno; 5867c478bd9Sstevel@tonic-gate 5877c478bd9Sstevel@tonic-gate if (strcmp(edtemp, "") != 0) { 5887c478bd9Sstevel@tonic-gate sverrno = errno; 5897c478bd9Sstevel@tonic-gate (void) unlink(edtemp); 5907c478bd9Sstevel@tonic-gate errno = sverrno; 5917c478bd9Sstevel@tonic-gate } 5927c478bd9Sstevel@tonic-gate if (tnam != NULL) { 5937c478bd9Sstevel@tonic-gate sverrno = errno; 5947c478bd9Sstevel@tonic-gate (void) unlink(tnam); 5957c478bd9Sstevel@tonic-gate errno = sverrno; 5967c478bd9Sstevel@tonic-gate } 5977c478bd9Sstevel@tonic-gate fprintf(stderr, "crontab: %s\n", gettext(msg)); 5987c478bd9Sstevel@tonic-gate exit(1); 5997c478bd9Sstevel@tonic-gate } 600