fixup! daemon/tls: use GNUTLS_NO_TICKETS_TLS12

18f662fc · Oto Šťáva · 749c031d · 18f662fc
Commit 18f662fc authored 2 years ago by Oto Šťáva
--- a/daemon/tls.c
+++ b/daemon/tls.c
@@ -332,11 +332,11 @@ struct tls_ctx *tls_new(struct worker_ctx *worker)
 		return NULL;
 	}

-	int flags = GNUTLS_SERVER | GNUTLS_NONBLOCK
+	int flags = GNUTLS_SERVER | GNUTLS_NONBLOCK;
 #if GNUTLS_VERSION_NUMBER >= 0x030705
-		    | GNUTLS_NO_TICKETS_TLS12;
+	if (gnutls_check_version("3.7.5"))
+		flags |= GNUTLS_NO_TICKETS_TLS12;
 #endif
-	;
 	int err = gnutls_init(&tls->c.tls_session, flags);
 	if (err != GNUTLS_E_SUCCESS) {
 		kr_log_error(TLS, "gnutls_init(): %s (%d)\n", gnutls_strerror_name(err), err);
@@ -1071,10 +1071,11 @@ struct tls_client_ctx *tls_client_ctx_new(tls_client_param_t *entry,
 #ifdef GNUTLS_ENABLE_FALSE_START
 			     | GNUTLS_ENABLE_FALSE_START
 #endif
+	;
 #if GNUTLS_VERSION_NUMBER >= 0x030705
-	 		     | GNUTLS_NO_TICKETS_TLS12;
+	if (gnutls_check_version("3.7.5"))
+		flags |= GNUTLS_NO_TICKETS_TLS12;
 #endif
-	;
 	int ret = gnutls_init(&ctx->c.tls_session,  flags);
 	if (ret != GNUTLS_E_SUCCESS) {
 		tls_client_ctx_free(ctx);