If there is no password, refuse access rather than blowing up.

author: Simon MacMullen <simon@rabbitmq.com> 2013-04-29 16:54:58 +0100
committer: Simon MacMullen <simon@rabbitmq.com> 2013-04-29 16:54:58 +0100
commit: 30fe849a798c5f5aa00eec1beaa8c81c829a4577 (patch)
tree: ed77facb86c5bffd5557405c892a847320827bd8
parent: 8b84368f50f2a792bed88fc330bd2cba49491a17 (diff)
download: rabbitmq-server-git-30fe849a798c5f5aa00eec1beaa8c81c829a4577.tar.gz
1 files changed, 3 insertions, 1 deletions
diff --git a/src/rabbit_auth_backend_internal.erl b/src/rabbit_auth_backend_internal.erl
index 44231f7b4a..3db8e2c31f 100644
--- a/src/rabbit_auth_backend_internal.erl
+++ b/src/rabbit_auth_backend_internal.erl
@@ -203,7 +203,9 @@ hash_password(Cleartext) ->
     <<Salt/binary, Hash/binary>>.
 
 check_password(Cleartext, <<Salt:4/binary, Hash/binary>>) ->
-    Hash =:= salted_md5(Salt, Cleartext).
+    Hash =:= salted_md5(Salt, Cleartext);
+check_password(_Cleartext, _Any) ->
+    false.
 
 make_salt() ->
     {A1,A2,A3} = now(),
author	Simon MacMullen <simon@rabbitmq.com>	2013-04-29 16:54:58 +0100
committer	Simon MacMullen <simon@rabbitmq.com>	2013-04-29 16:54:58 +0100
commit	30fe849a798c5f5aa00eec1beaa8c81c829a4577 (patch)
tree	ed77facb86c5bffd5557405c892a847320827bd8
parent	8b84368f50f2a792bed88fc330bd2cba49491a17 (diff)
download	rabbitmq-server-git-30fe849a798c5f5aa00eec1beaa8c81c829a4577.tar.gz