stackoom
  简体   繁体   中英

Maintaining patches of third-party Java library dependencies

 原文  2013-07-21 18:05:34       java/ git/ maven/ jar/ gradle

Question

My Java project has a dependency on a third-party library, let's call it xyz.jar. My project is maintained in git and xyz in svn. xyz is included in my project as a Maven dependency so that it gets downloaded automatically as part of the build process.

I need to make minor tweaks to the source of xyz, but still want to get updates from the project maintainers. What options do I have?

Currently, the best option seems to be to this:

  1. Fork the svn repo for xyz into a new git repo using git svn clone .
  2. Hack on the git repo.
  3. Build xyz-hacked.jar from the git repo and export the artifact to a maven library server.

When new changes come out for xyz, I can do a git svn rebase to keep my git repo up to date.

What are the best practices here? Can I improve on this approach?

Edit

I know there will be some manual work involved, eg resolving merge conflicts and ensuring my patches are compatible with the latest xyz. I'm not looking for a general, automated code merge solution. I'm trying to find out what the best practices and tools are in this situation.

Gradle

I don't think this is a Gradle-specific question, but just in case there's a Gradle-specific answer: I'm using Gradle to include xyz.jar as a 'compile' dependency.

2 answers

solution1
 1  2013-07-21 18:18:30

No matter what approach you use, it will always be labor-intensive.

Explicit conflicts will occur, but more insidious, any change anywhere in the base can totally break your local mods, even a change in a source file your local mods don't touch (ie an interface signature you depend on).

Each and every rebase will require manual merging and complete regression testing on the 3rd party library AND your applciations that depend on the library.

By definition, this is not automatable.

solution2
 0  2013-07-21 18:15:51

I think you should consider the following points in respect to your approach:

  • You don't know how exacltyy project maintainters will change the source code. Therefore, while you will be able to apply most updates using rebase, at some point you will eventually face a conflict which you will have to resovle manually.
  • This 3rd party library probably do not change very often. Even if it does, it doesn't mean that you have to update your dependency immeidately. What for? There could be lots and lots of updates to that library which doesn't affect your code anyhow. So why bothering with it?

My opinion is that such kind of problems should not be automated anyhow since this happens pretty rare and require your manual intervention anyway. Ie you will spend much more time trying to automate this than in case you parform manual rebuilds, say, once in half-a-year.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Integrating a third-party API into a Java application with clashing dependencies Detecting and handling third-party library filehandle leaks in Java reference a class that uses a third-party library in Java NotSerializableException in Third-Party Graphics Library GWT and JSNI: third-party library integration Using a third-party library with libgdx and GWT Synchronizing on library/third-party classes? Gradle Compile & Execute the Single Java Class with third-party jar dependencies using Gradle `buildscript` Reimplement AES encryption using third-party Java library without US law limitations Can I (easily) use a third-party library to handle serialization for Java RMI?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM