[Help-gnutls] Re: Semantics of `gnutls_openpgp_key_check_hostname ()'

Ludovic Courtès ludovic.courtes at laas.fr
Thu Apr 12 15:41:20 CEST 2007

Simon Josefsson <simon at josefsson.org> writes:

> This logic suggests that GnuTLS should not check the hostname against
> the OpenPGP ID packet at all.  All authorization decisions should be
> based on the trusted key list.

Well, that `check_hostname' function is not used within GnuTLS AFAICS,
so it's not a big problem.  But it's true that it appears to be of
little practical use---not to mention that it currently does little more
than `strcmp ()'.  ;-)


More information about the Gnutls-help mailing list