From: Steve Holme <steve_holme@hotmail.com>
Date: Wed, 17 Apr 2019 22:06:05 +0000 (+0100)
Subject: vauth/cleartext: Don't send the authzid if it is empty
X-Git-Tag: curl-7_65_0~117
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=f0950acc07b46f74ea5a54bbe50f081072fc2a68;p=curl

vauth/cleartext: Don't send the authzid if it is empty

Follow up to 762a292f.
---

diff --git a/lib/vauth/cleartext.c b/lib/vauth/cleartext.c
index 0017d5836..8f972e31c 100644
--- a/lib/vauth/cleartext.c
+++ b/lib/vauth/cleartext.c
@@ -73,7 +73,7 @@ CURLcode Curl_auth_create_plain_message(struct Curl_easy *data,
 
   *outlen = 0;
   *outptr = NULL;
-  zlen = strlen(authzid);
+  zlen = (authzid == NULL ? 0 : strlen(authzid));
   clen = strlen(authcid);
   plen = strlen(passwd);
 
@@ -87,7 +87,8 @@ CURLcode Curl_auth_create_plain_message(struct Curl_easy *data,
     return CURLE_OUT_OF_MEMORY;
 
   /* Calculate the reply */
-  memcpy(plainauth, authzid, zlen);
+  if(zlen != 0)
+    memcpy(plainauth, authzid, zlen);
   plainauth[zlen] = '\0';
   memcpy(plainauth + zlen + 1, authcid, clen);
   plainauth[zlen + clen + 1] = '\0';