XMPP: verify TLS against JID domain, not the host.

Partially fixes #820. A full fix requires patching https://github.com/matterbridge/go-xmpp to use DNS SRV records.
2019-05-28 12:18:26 -04:00
parent 6e8f535e8b
commit 3f38ed0407
1 changed files with 1 additions and 1 deletions
--- a/bridge/xmpp/xmpp.go
+++ b/bridge/xmpp/xmpp.go
@@ -100,7 +100,7 @@ func (b *Bxmpp) Send(msg config.Message) (string, error) {

 func (b *Bxmpp) createXMPP() error {
 	tc := &tls.Config{
-		ServerName:         strings.Split(b.GetString("Server"), ":")[0],
+		ServerName:         strings.Split(b.GetString("Jid"), "@")[1],
 		InsecureSkipVerify: b.GetBool("SkipTLSVerify"), // nolint: gosec
 	}
 	options := xmpp.Options{