From b870a3fe51838a4ede43526d24dcdce0f08e142f Mon Sep 17 00:00:00 2001
From: Matthew Wild <mwild1@gmail.com>
Date: Sun, 31 Jan 2010 15:39:49 +0000
Subject: mod_tls: Set the sslctx on outgoing connections (possibly the cause
 of outgoing s2s connections not being encrypted)

---
 plugins/mod_tls.lua | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to 'plugins')

diff --git a/plugins/mod_tls.lua b/plugins/mod_tls.lua
index 10bc21cd..897c818b 100644
--- a/plugins/mod_tls.lua
+++ b/plugins/mod_tls.lua
@@ -89,7 +89,8 @@ module:hook_stanza(xmlns_starttls, "proceed",
 			module:log("debug", "Proceeding with TLS on s2sout...");
 			local format, to_host, from_host = string.format, session.to_host, session.from_host;
 			session:reset_stream();
-			session.conn:starttls(true);
+			local ssl_ctx = session.from_host and hosts[session.from_host].ssl_ctx or global_ssl_ctx;
+			session.conn:starttls(ssl_ctx, true);
 			session.secure = false;
 			return true;
 		end);
-- 
cgit v1.2.3