From 6e150e6a14f2ab60cdca79695d5a919c0d72c714 Mon Sep 17 00:00:00 2001 From: Daniel Stenberg Date: Mon, 14 Feb 2022 17:33:50 +0100 Subject: [PATCH] url: keep bit.user_passwd untouched when re-using connection While connections for HTTP don't actually have credentials (unless using NTLM horrors), we maintain that info in there for now and just make sure to not reset it when a connection is reused. Fixes #8449 Reported-by: John H. Ayad --- lib/url.c | 1 - 1 file changed, 1 deletion(-) diff --git a/lib/url.c b/lib/url.c index c386e6f1b34819..afa378c7c12187 100644 --- a/lib/url.c +++ b/lib/url.c @@ -3485,7 +3485,6 @@ static void reuse_conn(struct Curl_easy *data, /* get the user+password information from the old_conn struct since it may * be new for this request even when we re-use an existing connection */ - conn->bits.user_passwd = old_conn->bits.user_passwd; if(conn->bits.user_passwd) { /* use the new user name and password though */ Curl_safefree(conn->user);