The problem is, our client's don't know servers certificates in advance. We do box software, we don't have control on app deployment and our software usually works in restricted networks without internet access. We see that Trust-On-First-Use is good option for us, but we failed to find any info how it can be implemented for c++ grpc client.
OpenSSL hasSSL_CTX_set_verify wich can be used to implement this. Is there similar callback for grpc?
What is the best way to implement TOFU for grpc client?