Guille We are trying to be broadly compatible with every Java 8 and Java 11 release we can but of course the older they get certain ones become unusable and the newer they get sometimes new behavior are introduced. We test a lot of combinations directly plus we hear a lot from threads like this. But we simply can't know all/verify combinations. So generally the answer is 'it should work' but of course sometimes pieces break as the JVM changes.
In this case you'll need to tell us more about your configuration for us to really try/consider much. We'd need to hear about how you use Kerb(do you use cross realm?) and we'd need to see the actual error's you're seeing. Also why go to 282 now if there are much newer versions available? I'm not sure about openjdk and its supported status in Java 8. But you might want to also look at Azul or other JDK providers. Thanks On Thu, Jan 27, 2022 at 8:40 AM Guillermo Muñoz Salgado <[email protected]> wrote: > > Hi all, > > We are upgrading Java from OpenJDK1.8.222 to OpenJDK1.8.292, and everything > seems to be ok except the Kerberos Controller Services. We think this issue > [1] can be related. To mitigate it we launch NiFi with the next property in > the bootstrap.conf file: > java.arg.17=-Dsun.security.krb5.disableReferrals=true, but we get the same > results. > > Are Kerberos Controller Services compatible with OpenJDK 1.8.282? > Anyone else with similar problems out there? > > I paste our bootstrap.conf: > > > java=java > > preserve.environment=false > > lib.dir=./lib > > conf.dir=./conf > > graceful.shutdown.seconds=20 > > java.arg.1=-Dorg.apache.jasper.compiler.disablejsr199=true > > java.arg.2=-Xms4G > > java.arg.3=-Xmx8G > > java.arg.4=-Djava.net.preferIPv4Stack=true > > java.arg.5=-Dsun.net.http.allowRestrictedHeaders=true > > java.arg.6=-Djava.protocol.handler.pkgs=sun.net.www.protocol > > java.arg.13=-XX:+UseG1GC > > java.arg.14=-Djava.awt.headless=true > > nifi.bootstrap.sensitive.key= > > java.arg.15=-Djava.security.egd=file:/dev/urandom > > java.arg.16=-Djavax.security.auth.useSubjectCredsOnly=true > > java.arg.17=-Dsun.security.krb5.disableReferrals=true > > java.arg.18=-Dzookeeper.admin.enableServer=true > > notification.services.file=./conf/bootstrap-notification-services.xml > > notification.max.attempts=5 > > java.arg.curator.supress.excessive.logs=-Dcurator-log-only-first-connection-issue-as-error-level=true > > > Thanks in advance, > -- > Guille > > [1] https://bugs.openjdk.java.net/browse/JDK-8233512
