[ https://issues.apache.org/jira/browse/KAFKA-9319?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17036297#comment-17036297 ]
Nikolay Izhikov commented on KAFKA-9319: ---------------------------------------- Hello, [~rsivaram]. I found two issues with system tests when only TLSv1.3 enabled: 1. CA certificate that is generated in `security_config.py` can't be validated by the openjdk11, therefore, tests with SSL enabled failed. (Error message is "TrustAnchor with subject "CN=SystemTestCA" is not a CA certificate") 2. The actual stack trace of the fail is hidden when the `ConfigException` stack trace printed. I fixed both of them and raised a PR - https://github.com/apache/kafka/pull/8106 A detailed explanation of the issues in the PR description. Can you, please, take a look? > Run some system tests using TLSv1.3 > ----------------------------------- > > Key: KAFKA-9319 > URL: https://issues.apache.org/jira/browse/KAFKA-9319 > Project: Kafka > Issue Type: Test > Reporter: Rajini Sivaram > Assignee: Nikolay Izhikov > Priority: Major > Fix For: 2.5.0 > > > KAFKA-7251 enables TLSv1.3 for Kafka. We should get some system tests to run > using TLSv1.3. Since TLSv1.3 is only supported from Java 11 onwards, we need > a system test build that runs with JDK 11 to enable these tests. -- This message was sent by Atlassian Jira (v8.3.4#803005)