File prosody-issue1147-v09x.patch of Package prosody.openSUSE_Leap_42.3_Update

diff -r 986c3e22ec32 plugins/mod_c2s.lua
--- a/plugins/mod_c2s.lua	Wed Jan 10 15:15:25 2018 +0000
+++ b/plugins/mod_c2s.lua	Mon May 28 12:37:05 2018 +0100
@@ -40,12 +40,19 @@
 
 function stream_callbacks.streamopened(session, attr)
 	local send = session.send;
-	session.host = nameprep(attr.to);
-	if not session.host then
+	local host = nameprep(attr.to);
+	if not host then
 		session:close{ condition = "improper-addressing",
 			text = "A valid 'to' attribute is required on stream headers" };
 		return;
 	end
+	if not session.host then
+		session.host = host;
+	elseif session.host ~= host then
+		session:close{ condition = "not-authorized",
+			text = "The 'to' attribute must remain the same across stream restarts" };
+		return;
+	end
 	session.version = tonumber(attr.version) or 0;
 	session.streamid = uuid_generate();
 	(session.log or session)("debug", "Client sent opening <stream:stream> to %s", session.host);