From 233501f768e08bd9fff3c90759999b136c315cc2 Mon Sep 17 00:00:00 2001
From: Tatsuhiro Tsujikawa <tatsuhiro.t@gmail.com>
Date: Fri, 10 May 2013 00:49:06 +0900
Subject: [PATCH] Enable TLS1.1 with gnutls build

---
 src/LibgnutlsTLSSession.cc | 8 +-------
 1 file changed, 1 insertion(+), 7 deletions(-)

diff --git a/src/LibgnutlsTLSSession.cc b/src/LibgnutlsTLSSession.cc
index d8721aeb8..c855750d1 100644
--- a/src/LibgnutlsTLSSession.cc
+++ b/src/LibgnutlsTLSSession.cc
@@ -71,13 +71,7 @@ int GnuTLSSession::init(sock_t sockfd)
   // It seems err is not error message, but the argument string
   // which causes syntax error.
   const char* err;
-  // For client side, disables TLS1.1 here because there are servers
-  // that don't understand TLS1.1.  TODO Is this still necessary?
-  rv_ = gnutls_priority_set_direct(sslSession_,
-                                   tlsContext_->getSide() == TLS_CLIENT ?
-                                   "NORMAL:-VERS-TLS1.1" :
-                                   "NORMAL",
-                                   &err);
+  rv_ = gnutls_priority_set_direct(sslSession_, "NORMAL", &err);
   if(rv_ != GNUTLS_E_SUCCESS) {
     return TLS_ERR_ERROR;
   }