From 702d8a9ab49e326fbdd73229a9ab7fda42ecfa84 Mon Sep 17 00:00:00 2001
From: Kim Alvefur <zash@zash.se>
Date: Tue, 10 Aug 2021 20:55:43 +0200
Subject: mod_s2s: Add a Direct TLS listener

Mirroring the c2s 'direct_tls'. Naming things is hard.

direct_tls_s2s_ports = { 5269+1 }
---
 plugins/mod_s2s.lua | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

(limited to 'plugins/mod_s2s.lua')

diff --git a/plugins/mod_s2s.lua b/plugins/mod_s2s.lua
index f4cf9444..80e4a124 100644
--- a/plugins/mod_s2s.lua
+++ b/plugins/mod_s2s.lua
@@ -967,3 +967,17 @@ module:provides("net", {
 	};
 });
 
+
+module:provides("net", {
+	name = "direct_tls_s2s";
+	listener = listener;
+	encryption = "ssl";
+	ssl_config = {
+		verify = { "peer", "client_once", };
+	};
+	multiplex = {
+		protocol = "xmpp-server";
+		pattern = "^<.*:stream.*%sxmlns%s*=%s*(['\"])jabber:server%1.*>";
+	};
+});
+
-- 
cgit v1.2.3