← Back to Blog

Migrating from Cloudera Hadoop to GCP Dataproc: War Stories and Lessons Learned

📅 June 20, 2024 📖 16 min read ☁️ GCP 🔧 Data Engineering ☁️ Cloud

Nobody migrates off Cloudera because they want to. You migrate because the on-premises infrastructure contract expired, the hardware refresh would cost more than the GCP bill, or your CDH license renewal quote arrived and made everyone's eyes water. Whatever the trigger, Cloudera → GCP is a multi-month project with more surprises than most teams expect. This is the article I wish existed when we started.

The good news: the core migration is technically straightforward. Spark jobs run on Dataproc with minimal changes. Hive Metastore maps to Cloud Dataproc Metastore (managed Hive). HDFS maps to GCS. The bad news: the surrounding assumptions — about data locality, network topology, authentication, scheduling, and performance characteristics — all need revisiting.

The Cloudera Assumptions That Don't Survive Contact with GCP

1. Data Locality No Longer Exists

On Cloudera, Spark schedulers prioritize running tasks on the node where the data lives (HDFS data locality). On Dataproc with GCS, this concept doesn't apply — data always crosses the network from GCS to compute. The mitigating factor: GCS has far better random read performance than HDFS at scale (Google's Colossus behind it), and Dataproc clusters in the same region as the GCS bucket have 10 Gbps+ network bandwidth between compute and storage. But any Spark code that relied on co-located shuffles will behave differently and may need partition tuning.

2. Ephemeral Clusters Change Everything

Cloudera clusters are persistent: always running, sized for peak load, provisioned once and maintained. Dataproc enables ephemeral clusters: spin up for a job, tear down when done. This is dramatically cheaper (no idle compute) but requires rethinking:

  • State management: No persistent HDFS means all intermediate data must go through GCS. Long multi-stage pipelines that previously used HDFS temp directories need to use GCS paths explicitly.
  • Cold start time: Dataproc cluster creation takes 60–90 seconds for Standard mode (90–120 seconds for Enhanced Flexibility). Budget this into SLA calculations.
  • Hive Metastore: On Cloudera, the Hive Metastore is on the persistent cluster. On GCP, use Cloud Dataproc Metastore (managed, decoupled from clusters) so metastore survives cluster deletion.

3. Security Model Is Completely Different

Cloudera's Kerberos + Ranger/Sentry security model has no direct GCP equivalent. GCP uses IAM service accounts for authentication and IAM policies for authorization. The migration requires:

  • Map Kerberos principals to GCP service accounts
  • Replace Ranger/Sentry table-level ACLs with BigQuery/Dataproc IAM policies or (better) migrate to Dataplex for governance
  • Update all Spark jobs that use Kerberos authentication — they need to use ADC (Application Default Credentials) instead
flowchart LR
    subgraph Before["Cloudera On-Prem"]
        CDH["CDH Cluster\n(persistent, HDFS)"]
        HMS["Hive Metastore\n(on cluster)"]
        Ranger["Ranger/Sentry\nACLs"]
        Oozie["Oozie / Cron\nScheduler"]
    end

    subgraph After["GCP Dataproc"]
        DP["Dataproc Ephemeral Clusters\n(spin up per job)"]
        DPMS["Cloud Dataproc Metastore\n(persistent, managed)"]
        IAM["GCP IAM + Dataplex\nGovernance"]
        Airflow["Cloud Composer\n(Managed Airflow)"]
        GCS["Google Cloud Storage\n(replaces HDFS)"]
    end

    CDH -->|Migrates to| DP
    HMS -->|Migrates to| DPMS
    Ranger -->|Migrates to| IAM
    Oozie -->|Migrates to| Airflow
    CDH -->|Data migrates to| GCS

Component mapping from Cloudera CDH to GCP. Each component has a clear GCP equivalent, but the migration is not a direct swap — the architectural model (persistent vs ephemeral) changes everything downstream.

The Migration Playbook: Phase by Phase

Phase 1: Inventory and Classify (4–6 weeks)

Before moving anything, understand what you have:

  • Data inventory: Total HDFS capacity, data by directory, partition structure, file formats, compression codecs. Use hdfs dfs -du -s -h / and custom scripts to map the full picture. Look for files >1 GB (fine for HDFS, fine for GCS) and masses of tiny files (<128 MB) — GCS and Spark both handle these poorly.
  • Job inventory: Oozie workflows, Hive queries, Spark jobs, shell scripts in cron. Categorize by: frequency, SLA criticality, Spark version required, dependency on Kerberos, usage of HDFS-specific APIs.
  • Dependency mapping: Which jobs produce data that other jobs consume? Build the dependency graph before migrating anything.

Phase 2: The Small-File Problem (Parallel track)

This one will hurt you if you don't address it before the migration. Cloudera HDFS handles millions of small files reasonably well. GCS is an object store — each file is an API call. A Hive table with 50 million 1 KB files will be brutally slow to query via Dataproc, even with Hive's input format optimization.

Fix before migration: Run compaction jobs on all tables with many small files. Target 256 MB – 1 GB per file. Use Hive CONCATENATE for ORC, or a Spark job for Parquet:

from pyspark.sql import SparkSession

spark = SparkSession.builder.appName("compact").getOrCreate()

# Compact a Hive table's partitions
spark.sql("SET spark.sql.files.maxRecordsPerFile = 5000000")

df = spark.table("analytics.events_raw").filter("event_date = '2024-01-01'")
df.repartition(8)  # target ~8 files per partition
  .write \
  .mode("overwrite") \
  .insertInto("analytics.events_raw")

Phase 3: Data Migration with gsutil/Storage Transfer Service

For bulk HDFS → GCS migration:

# Option 1: distcp (runs as a MapReduce job on the cluster)
hadoop distcp \
  -m 50 \
  -bandwidth 1000 \
  hdfs://namenode:8020/user/hive/warehouse/analytics.db/orders/ \
  gs://my-bucket/hive/warehouse/analytics.db/orders/

# Option 2: for smaller datasets, gsutil rsync from edge node
gsutil -m rsync -r \
  hdfs://namenode:8020/path/ \
  gs://my-bucket/path/

# Validate: compare file counts and sizes
hadoop fs -count /user/hive/warehouse/analytics.db/orders/
gsutil du -s gs://my-bucket/hive/warehouse/analytics.db/orders/

Phase 4: Spark Job Migration and Testing

The most common Spark code changes required:

  • Replace hdfs://namenode:8020/path with gs://bucket-name/path
  • Replace sc.textFile("hdfs://...") with sc.textFile("gs://...")
  • Remove Kerberos UserGroupInformation calls — use GCS connector's ADC instead
  • Update SparkSession configuration: remove HDFS-specific settings, add GCS connector config
  • Replace spark.sql("LOCATION 'hdfs://...'...") table definitions with GCS paths

Performance Surprises

GCS is faster than expected for sequential reads, slower for random access: Columnar formats (Parquet, ORC) with predicate pushdown work excellently on GCS — the sequential read pattern plays to GCS's strengths. Row-oriented formats (Avro, CSV) that require reading large amounts to extract small subsets are noticeably slower than HDFS for the same query.

Dataproc Shuffle Service reduces cross-node shuffle traffic: Enable Dataproc Shuffle Service for shuffle-heavy jobs. It routes shuffle data through GCS rather than direct node-to-node, which sounds slower but is faster at scale because it avoids TCP connection overhead between nodes and supports much larger shuffle sizes than in-memory shuffle.

Preemptible VMs are dangerous without checkpointing: Preemptible VMs (80% cheaper) are tempting but will cause job failures if used on tasks that don't checkpoint. Use them for worker nodes only, keep the driver and master on standard VMs, and ensure all Spark jobs use checkpoint directories on GCS for long-running tasks.

What Took Twice as Long as Expected

Honest accounting of where the time actually went:

  • Oozie → Cloud Composer (Airflow) migration: Not technically complex, but every Oozie workflow had quirks, undocumented dependencies, and coordination with teams who had forgotten they owned a workflow. Budget 60% more time than estimated.
  • The undocumented Hive UDFs: Multiple Hive tables had custom UDFs (in JARs on HDFS) that weren't documented anywhere. Discovery was archaeological.
  • Permission archaeology: Ranger policies had accumulated years of grants, some of which no longer mapped to active users or services. Re-establishing correct GCP IAM took weeks of back-and-forth with stakeholders.
  • Training the team on ephemeral clusters: Engineers and data scientists accustomed to always-on Jupyter notebooks on Cloudera had to change how they worked. This is a change management problem, not a technical one.

Total migration timeline for a medium-large deployment (1.5 PB HDFS, ~300 Spark jobs, 50-person data team): 8 months from kickoff to full cutover, including 6 weeks of parallel running. The infrastructure cost comparison: ~$180K/year on-prem (hardware + licensing) vs ~$65K/year on GCP (with committed use discounts and ephemeral clusters). The savings were real, but the migration cost was approximately $200K in engineering time. Year-3 payback on the investment.