2018-02-07 06:27:07 UTC - Jai Asher: @Matteo Merli ^^ ---- 2018-02-07 06:31:27 UTC - Matteo Merli: I think it might be related to having `conf.setTlsAllowInsecureConnection(true);` in the test code ---- 2018-02-07 10:24:10 UTC - Masakazu Kitajo: @Matteo Merli Right, if I remember correctly. That should switch whether a client checks validity of a server certificate. ---- 2018-02-07 10:26:29 UTC - Masakazu Kitajo: @Jai Asher The actual check would be done by JRE. I mean something in java.security package. ---- 2018-02-07 10:28:42 UTC - Masakazu Kitajo: We pass the configuration to a SSL context builder when we create a context. ---- 2018-02-07 10:28:48 UTC - Masakazu Kitajo: <https://github.com/apache/incubator-pulsar/blob/master/pulsar-common/src/main/java/org/apache/pulsar/common/util/SecurityUtility.java#L70-L119> ---- 2018-02-07 10:39:27 UTC - Masakazu Kitajo: Also, it reminded me that Pulsar doesn’t support Java’s KeyStore. Is this still correct? I’ve never heard complaints about that though. ----
