Skip to content
Snippets Groups Projects
Commit 749c031d authored by Oto Šťáva's avatar Oto Šťáva
Browse files

fixup! daemon/tls: use GNUTLS_NO_TICKETS_TLS12

parent ab03ab13
No related merge requests found
Pipeline #98994 canceled with stages
in 10 minutes and 43 seconds
This commit is part of merge request !1295. Comments created here will be created in the context of that merge request.
Hide whitespace changes
Inline Side-by-side
Showing
with 6 additions and 2 deletions
daemon/tls.c
+ 6
2
View file @ 749c031d
......@@ -332,10 +332,11 @@ struct tls_ctx *tls_new(struct worker_ctx *worker)
return NULL;
}
int flags = GNUTLS_SERVER | GNUTLS_NONBLOCK;
int flags = GNUTLS_SERVER | GNUTLS_NONBLOCK
#if GNUTLS_VERSION_NUMBER >= 0x030705
flags |= GNUTLS_NO_TICKETS_TLS12;
| GNUTLS_NO_TICKETS_TLS12;
#endif
;
int err = gnutls_init(&tls->c.tls_session, flags);
if (err != GNUTLS_E_SUCCESS) {
kr_log_error(TLS, "gnutls_init(): %s (%d)\n", gnutls_strerror_name(err), err);
......@@ -1069,6 +1070,9 @@ struct tls_client_ctx *tls_client_ctx_new(tls_client_param_t *entry,
unsigned int flags = GNUTLS_CLIENT | GNUTLS_NONBLOCK
#ifdef GNUTLS_ENABLE_FALSE_START
| GNUTLS_ENABLE_FALSE_START
#endif
#if GNUTLS_VERSION_NUMBER >= 0x030705
| GNUTLS_NO_TICKETS_TLS12;
#endif
;
int ret = gnutls_init(&ctx->c.tls_session, flags);
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment