[bitnami/zookeeper] Handle TLS healthcheck without client cert

[oren1zo]

Description of the change

Skip extracting client certificates from the PKCS#12 keystore when ZOO_TLS_CLIENT_AUTH=none so the readiness probe can continue using openssl s_client without blocking on an empty password, while still validating the secure client port.

Benefits

Prevents zombie openssl pkcs12 processes when mutual TLS is disabled but preserves end-to-end TLS verification for the health check.

Possible drawbacks

None known, the probe continues to use the TLS listener and only omits mutual-auth when it is not required

Applicable issues

Related posts:
bitnami/charts#29603
#76831

Additional information

[carrodher]

Thank you for initiating this pull request. We appreciate your effort. This is just a friendly reminder that signing your commits is important. Your signature certifies that you either authored the patch or have the necessary rights to contribute to the changes. You can find detailed information on how to do this in the “Sign your work” section of our contributing guidelines.

Feel free to reach out if you have any questions or need assistance with the signing process.

[oren1zo]

Thank you for initiating this pull request. We appreciate your effort. This is just a friendly reminder that signing your commits is important. Your signature certifies that you either authored the patch or have the necessary rights to contribute to the changes. You can find detailed information on how to do this in the “Sign your work” section of our contributing guidelines.

Feel free to reach out if you have any questions or need assistance with the signing process.

Thanks! Could you point me to the exact steps to sign my previous commits correctly for this PR?

[carrodher]

You can find the steps in the failing action: https://github.com/bitnami/containers/pull/88022/checks?check_run_id=54302290335