Skip to content

HADOOP-19782 freshen version of two compression libraries #8178

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
edwardcapriolo wants to merge 1 commit into
base: trunk
Choose a base branch
from
Open

HADOOP-19782 freshen version of two compression libraries #8178

edwardcapriolo wants to merge 1 commit into from
+2 −2

Conversation

@edwardcapriolo
Copy link
Contributor

@edwardcapriolo edwardcapriolo commented Jan 11, 2026

Description of PR

Compression libraries tend to attract security researchers. So we update them.

How was this patch tested?

Existing tests cover compression well.

For code changes:

  • [Y ] Does the title or this PR starts with the corresponding JIRA issue id (e.g. 'HADOOP-17799. Your PR title ...')?
  • [NA ] Object storage: have the integration tests been executed and the endpoint declared according to the connector-specific documentation?
  • [ NA] If adding new dependencies to the code, are these dependencies licensed in a way that is compatible for inclusion under ASF 2.0?
  • [ NA] If applicable, have you updated the LICENSE, LICENSE-binary, NOTICE-binary files?

AI Tooling

No ai was used in the making of this PR, no clouds were injured.
If an AI tool was used:

@github-actions github-actions bot removed the YARN label Jan 11, 2026
cnauroth
cnauroth requested changes Jan 12, 2026
View reviewed changes
Copy link
Contributor

@cnauroth cnauroth left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It looks like lz4-java was already updated in #8122. If you want to refresh the patch, we can go ahead with upgrading just snappy-java though. We'll also need to update the license information here:

https://github.com/apache/hadoop/blob/trunk/LICENSE-binary#L431

@edwardcapriolo
Copy link
Contributor Author

edwardcapriolo commented Jan 12, 2026

@cnauroth we need to change the lic

It looks like lz4-java was already updated in #8122. If you want to refresh the patch, we can go ahead with upgrading just snappy-java though. We'll also need to update the license information here:

https://github.com/apache/hadoop/blob/trunk/LICENSE-binary#L431

For crying out loud :)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cnauroth cnauroth cnauroth requested changes

Assignees

No one assigned

Labels

build Common Native trunk

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@edwardcapriolo @cnauroth