From 590f0358d86c402f94b329f2ce0d612cbb749c95 Mon Sep 17 00:00:00 2001
From: Daniel Stenberg <daniel@haxx.se>
Date: Sat, 1 Mar 2008 22:32:03 +0000
Subject: - Anatoli Tubman found and fixed a crash with Negotiate
 authentication used on   a re-used connection where both requests used
 Negotiate.

---
 lib/http.c | 8 ++++++++
 1 file changed, 8 insertions(+)

(limited to 'lib/http.c')

diff --git a/lib/http.c b/lib/http.c
index 45cabd4b6..59a275d0d 100644
--- a/lib/http.c
+++ b/lib/http.c
@@ -2358,6 +2358,14 @@ CURLcode Curl_http(struct connectdata *conn, bool *done)
                   te
                 );
 
+    /*
+     * Free userpwd now --- cannot reuse this for Negotiate and possibly NTLM
+     * with basic and digest, it will be freed anyway by the next request
+     */
+
+    Curl_safefree (conn->allocptr.userpwd);
+    conn->allocptr.userpwd = NULL;
+
     if(result)
       return result;
 
-- 
cgit v1.2.3