ejabberd_stun: Handle hashed passwords gracefully

Don't crash when STUN/TURN authentication is performed against a
SCRAM-hashed password.

1 files changed, 8 insertions, 1 deletions

diff --git a/src/ejabberd_stun.erl b/src/ejabberd_stun.erl
index b3527b3cf..a094f37ac 100644
--- a/src/ejabberd_stun.erl
+++ b/src/ejabberd_stun.erl
@@ -80,7 +80,14 @@ get_password(User, Realm) ->
 	Password when byte_size(Password) > 0 ->
 	    Password;
 	<<>> ->
-	    ejabberd_auth:get_password_s(User, Realm)
+	    case ejabberd_auth:get_password_s(User, Realm) of
+		Password when is_binary(Password) ->
+		    Password;
+		_ ->
+		    ?INFO_MSG("Cannot use hashed password of ~s@~s for "
+			      "STUN/TURN authentication", [User, Realm]),
+		    <<>>
+	    end
     end.
 
 %%%===================================================================