[Help-gnutls] Re: Semantics of `gnutls_openpgp_key_check_hostname ()'

[Ludovic Courtès]

Simon Josefsson <simon at josefsson.org> writes:

> This logic suggests that GnuTLS should not check the hostname against
> the OpenPGP ID packet at all.  All authorization decisions should be
> based on the trusted key list.

Well, that `check_hostname' function is not used within GnuTLS AFAICS,
so it's not a big problem.  But it's true that it appears to be of
little practical use---not to mention that it currently does little more
than `strcmp ()'.  ;-)

Thanks,
Ludovic.