lhotari opened a new pull request #10336: URL: https://github.com/apache/pulsar/pull/10336
Fixes #9720 ### Motivation The current client.keystore.jks key is invalid for TLS 1.3:  TLS 1.3 forbids the usage of DSA keys and SHA1 signature algorithm. The key must be a RSA key and the signature algorithm at least SHA256. TLS 1.3 is bundled in [JDK 8 since 8u261](https://github.com/AdoptOpenJDK/openjdk-build/issues/1254#issuecomment-678900470). It is unclear why DSA/SHA1 isn't accepted in JDK11 since #8581 fixed a similar problem for JDK8 when TLS1.3 came available. This change fixes the test. There's a separate issue for changing the default TLS protocols, #10335 . ### Modifications * add script for creating keystores for tests * update documentation to include `-keyalg RSA` when creating keys * update keystores used in tests -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected]
