Behavioral changes in Cloudera Runtime 7.1.9 SP1 CHF 13

Know more about the behavioral changes in cumulative hotfix 13 for 7.1.9 SP1.

Hive

CDPD-92002: New configuration properties added for Hive metatool summary operation: A new configuration property is available to manage the performance and scope of the metatool summary operation, particularly when dealing with the task running indefinitely.; Previous behavior:; The Hive metatool summary operation executed without specific controls for resource usage, time limits.; New behavior:; A new configuration property is available to manage the performance and scope of the metatool summary operation, particularly when dealing with the task running indefinitely.

Property Default Value Description

hive.metatool.summary.timeout 20 min The maximum time the summary operation will wait to complete before being automatically canceled.

Property	Default Value	Description
`hive.metatool.summary.timeout`	20 min	The maximum time the summary operation will wait to complete before being automatically canceled.

CDPD-89269: Batched Insert events for Impala: Previous behavior:; Impala initiated insert statements using a single API call for each partition. This could become a performance bottleneck when inserting data into tables with a large number of partitions.; New behavior:; This change speeds up computing file checksums during INSERT operations, especially for tables with many files and partitions. This is achieved by leveraging a new batch insert API in the Hive Metastore to process events more efficiently.
Apache Jira: IMPALA-14051
CDPD-92378: Impala no longer allows unauthenticated user impersonation through Knox JDBC gateway: Previous behavior:; When connecting to Impala using the Knox JDBC gateway URL (e.g., jdbc:impala://[knoxhost]:[knoxport]/...), you could specify any Impala user through the impala.doas.user property and successfully impersonate them, regardless of whether your Knox user had explicit Impala proxy user permissions. This unintended behavior bypassed security checks and allowed for delegation to users who should not have been accessible.; New behavior:; Knox JDBC Gateway authenticates as itself and delegates to the logged in user, so it has already performed some delegation. If impala.doas.user is passed by the client through Knox JDBC Gateway, it will now result in an error as we don't support secondary delegation.