Oto Šťáva
--- a/daemon/tls.c

+ 6

− 2
+++ b/daemon/tls.c

+ 6

− 2
 @@ -332,10 +332,11 @@ struct tls_ctx *tls_new(struct worker_ctx *worker)
 		return NULL;
 	}

-	int flags = GNUTLS_SERVER | GNUTLS_NONBLOCK;
+	int flags = GNUTLS_SERVER | GNUTLS_NONBLOCK
 #if GNUTLS_VERSION_NUMBER >= 0x030705
-	flags |= GNUTLS_NO_TICKETS_TLS12;
+		    | GNUTLS_NO_TICKETS_TLS12;
 #endif
+	;
 	int err = gnutls_init(&tls->c.tls_session, flags);
 	if (err != GNUTLS_E_SUCCESS) {
 		kr_log_error(TLS, "gnutls_init(): %s (%d)\n", gnutls_strerror_name(err), err);
 @@ -1069,6 +1070,9 @@ struct tls_client_ctx *tls_client_ctx_new(tls_client_param_t *entry,
 	unsigned int flags = GNUTLS_CLIENT | GNUTLS_NONBLOCK
 #ifdef GNUTLS_ENABLE_FALSE_START
 			     | GNUTLS_ENABLE_FALSE_START
+#endif
+#if GNUTLS_VERSION_NUMBER >= 0x030705
+	 		     | GNUTLS_NO_TICKETS_TLS12;
 #endif
 	;
 	int ret = gnutls_init(&ctx->c.tls_session,  flags);