Fixed Issues in Apache Knox
Review the list of Knox issues that are resolved in Cloudera Runtime 7.1.7 SP2.
- CDPD-47595: Fixed Hive's SSL_ENABLED flag processing in Knox's automated service discovery in a way such is it is now capable of determining all HIVE_ON_TEZ-related changes properly.
- CDPD-45349: KNOX-2827 Dispatch whitelist regular expression is matched against the base URL.
- CDPD-45191: KNOX-2810 Fixed an issue causing login failures when there were special characters in the password.
- CDPD-42947: Replaced log4j to reload4j.
- CDPD-42851: KNOX-2690 Fixed an issue causing service URLs to be unavailable on Knox UI after a temporary discovery failure.
- CDPD-42850: KNOX-2747 - Fixed an issue causing the remote alias service to regenerate pac4j password at each startup.
- CDPD-41495: Fixed user-auth-test command in KnoxCLI after upgrading to Shiro 1.6.
- CDPD-28196: Spark 3 History Server link Resource Manager UI works again.
- CDPD-19654: The Console URL for Yarn on the Oozie UI will be a Knox URL when the Oozie UI is accessed through Knox.
Apache patch information
- KNOX-2807
- KNOX-2827
- KNOX-2810
- KNOX-2690
- KNOX-2747
- KNOX-2782
- KNOX-2675
Technical Service Bulletins
- TSB 2023-630: Apache Knox - Server-side Request Forgery in host parameter
- For the latest update on this issue see the corresponding Knowledge article: TSB 2023-630: Apache Knox - Server-side Request Forgery in host parameter
