[
https://issues.apache.org/jira/browse/KAFKA-9319?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17036297#comment-17036297
]
Nikolay Izhikov commented on KAFKA-9319:
----------------------------------------
Hello, [~rsivaram].
I found two issues with system tests when only TLSv1.3 enabled:
1. CA certificate that is generated in `security_config.py` can't be validated
by the openjdk11, therefore, tests with SSL enabled failed. (Error message is
"TrustAnchor with subject "CN=SystemTestCA" is not a CA certificate")
2. The actual stack trace of the fail is hidden when the `ConfigException`
stack trace printed.
I fixed both of them and raised a PR - https://github.com/apache/kafka/pull/8106
A detailed explanation of the issues in the PR description.
Can you, please, take a look?
> Run some system tests using TLSv1.3
> -----------------------------------
>
> Key: KAFKA-9319
> URL: https://issues.apache.org/jira/browse/KAFKA-9319
> Project: Kafka
> Issue Type: Test
> Reporter: Rajini Sivaram
> Assignee: Nikolay Izhikov
> Priority: Major
> Fix For: 2.5.0
>
>
> KAFKA-7251 enables TLSv1.3 for Kafka. We should get some system tests to run
> using TLSv1.3. Since TLSv1.3 is only supported from Java 11 onwards, we need
> a system test build that runs with JDK 11 to enable these tests.
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
