HoverflyConfiguration.tlsVerificationDisabled not being honored

[ctoomey]

I'm trying to hit my local grpc server running SSL with a self-signed certificate.

Since disabling TLS verification is not supported by the existing GrpcConfig class, I subclassed it and overrode build() so that I can set tlsVerificationDisabled in the created HoverflyConfiguration. I've run it in the debugger and verified that in Hoverfly.start(), the HoverflyConfiguration returned by build() has tlsVerificationDisabled = true.

But I'm still getting this error from hoverfly-grpc when I make a proxied grpc request: [Thread-1] INFO hoverfly-grpc - 2021/07/13 19:14:13 [001] WARN: Cannot handshake client localhost:9443 remote error: tls: unknown certificate.

Can you confirm this is a bug in the included binary, or what other info can I provide?

[ctoomey]

Update: I got past the above error, which turned out to be caused by not having imported the Hoverfly certificate into the right java cacert file. But now I'm indeed getting a target server certificate validation error back from hoverfly:

headers: Metadata(:status=200,content-type=text/plain)
DATA-----------------------------
Hoverfly Error!

There was an error when forwarding the request to the intended destination

Got error: x509: certificate signed by unknown authority
trailers: Metadata(grpc-status=2).

The hoverctl logs shows the same:

ERRO[2021-07-14T11:33:32-07:00] There was an error when forwarding the request to the intended destination  error="x509: certificate signed by unknown authority" mode=capture request=...

[ctoomey]

Hi, will you please confirm this is a a bug and let me know when you think you'll be able to fix it? Thanks much.