Github user EronWright commented on the issue:
https://github.com/apache/flink/pull/5966
To be honest I don't see a great need to support anything other than a
single trusted certificate for internal communication. We could easily build
some conveniences around that, like generating a certificate upon cluster
startup with an truststore containing only that certificate. I see no need to
perform hostname verification because the truststore is constrained.
One drawback is that the queryable state interface is practically
inaccessible because the cluster certificate is likely unknown to the client.
Regarding external connectivity, I don't think that mutual SSL is
universally applicable, and I explore some options in FLIP-26.
---
