Fix GH-15395: avoid copying empty auth password for PHP_AUTH_PW.

But we still consider the authentication handling Basic part successful.

Author: devnexen

main/main.c

@@ -2672,7 +2672,12 @@ PHPAPI int php_handle_auth_data(const char *auth)
 			if (pass) {
 				*pass++ = '\0';
 				SG(request_info).auth_user = estrndup(ZSTR_VAL(user), ZSTR_LEN(user));
-				SG(request_info).auth_password = estrdup(pass);
+
+				if (strlen(pass) > 0) {
+					SG(request_info).auth_password = estrdup(pass);
+				} else {
+					SG(request_info).auth_password = NULL;
+				}
 				ret = 0;
 			}
 			zend_string_free(user);