From 8f0c91f3a833b24c27e63721ca15838c92a1cea4 Mon Sep 17 00:00:00 2001
From: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
Date: Wed, 20 Dec 2023 13:38:53 +1300
Subject: [PATCH] libcli/security: rearrange conditional ACE sddl_write_int

REF: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=65122

Signed-off-by: Douglas Bagnall <douglas.bagnall@catalyst.net.nz>
Reviewed-by: Andrew Bartlett <abartlet@samba.org>
---
 libcli/security/sddl_conditional_ace.c | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/libcli/security/sddl_conditional_ace.c b/libcli/security/sddl_conditional_ace.c
index b5d0a3afa3a..75a80e758ad 100644
--- a/libcli/security/sddl_conditional_ace.c
+++ b/libcli/security/sddl_conditional_ace.c
@@ -623,6 +623,7 @@ static bool sddl_write_int(struct sddl_write_context *ctx,
 	uint8_t sign = tok->data.int64.sign;
 	uint8_t base = tok->data.int64.base;
 	char buf[26]; /* oct(1<<63) + sign + \0 */
+	char sign_char;
 	if (sign > CONDITIONAL_ACE_INT_SIGN_NONE ||
 	    base > CONDITIONAL_ACE_INT_BASE_16) {
 		return false;
@@ -650,6 +651,7 @@ static bool sddl_write_int(struct sddl_write_context *ctx,
 		/* note we allow "-0", because we will parse it. */
 		return false;
 	}
+	sign_char = (sign == CONDITIONAL_ACE_INT_SIGN_NEGATIVE) ? '-' : '+';
 	/*
 	 * We can use "%+ld" for the decimal sign, but "%+lx" and "%+lo" are
 	 * invalid because %o and %x are unsigned.
@@ -670,12 +672,10 @@ static bool sddl_write_int(struct sddl_write_context *ctx,
 		return sddl_write(ctx, "-0x8000000000000000");
 	}
 
-	buf[0] = (sign == CONDITIONAL_ACE_INT_SIGN_NEGATIVE) ? '-' : '+';
-
 	if (base == CONDITIONAL_ACE_INT_BASE_8) {
-		snprintf(buf + 1, sizeof(buf) - 1, "0%llo", llabs(v));
+		snprintf(buf, sizeof(buf), "%c0%llo", sign_char, llabs(v));
 	} else {
-		snprintf(buf + 1, sizeof(buf) - 1, "0x%llx", llabs(v));
+		snprintf(buf, sizeof(buf), "%c0x%llx", sign_char, llabs(v));
 	}
 	return sddl_write(ctx, buf);
 }
-- 
2.11.4.GIT