net.corda.core.crypto / registerWhitelistTrustManager

registerWhitelistTrustManager

fun registerWhitelistTrustManager(): Unit

Call this to change the default verification algorithm and this use the WhitelistTrustManager implementation. This is a work around to the fact that ArtemisMQ and probably many other libraries dont correctly configure the SSLParameters with setEndpointIdentificationAlgorithm and thus dont check that the certificate matches with the DNS entry requested. This exposes us to man in the middle attacks. The issue has been raised with ArtemisMQ: https://issues.apache.org/jira/browse/ARTEMIS-656