aleph

dergutemoritz 2026-04-08T12:55:49.735779Z

seancorfield 2026-04-08T13:15:19.446789Z

Are there plans to move to Netty 4.2.x? We're on 4.2.12 at work and I don't remember the 4.1.x to 4.2.x update being hard for us (we don't use Aleph, but we hook into Netty pretty deeply). Just curious, since I'm not an Aleph user.

seancorfield 2026-04-08T13:15:43.758089Z

Oh, nm, just seen a thread here on Feb 12th about that... will go read it...

dergutemoritz 2026-04-08T13:20:28.201419Z

Right, it's underway :)

seancorfield 2026-04-08T13:22:03.870969Z

Ah, looks like it's a little more involved for Aleph than it was for the things we hooked into. Fair enough. I was mostly just curious and figured I'd pop into the channel and ask 🙂 Sometimes with these Java libraries, even a patch-level change can be breaking, let alone a "minor"-level change 🙂

dergutemoritz 2026-04-08T13:29:28.263009Z

Indeed 😅 Do you use any of the new features in 4.2?

seancorfield 2026-04-08T13:31:13.775029Z

Not that I recall. We just mostly try to stay on the latest version of all libraries, if we can. We have a few laggards, that have breaking changes so severe we just couldn't face the upgrade... 🙂

dergutemoritz 2026-04-08T13:32:12.481689Z

Jackson 💀

seancorfield 2026-04-08T13:37:53.784419Z

We have worked hard to not depend on anything with Jackson 🙂 That's why we have ring-data-json which is ring-json but uses org.clojure/data.json instead of Cheshire 🙂

dergutemoritz 2026-04-08T16:33:33.109869Z

Ah there were some substantial improvements to data.json in the recent past, right?

dergutemoritz 2026-04-08T16:33:52.074889Z

Back when I considered it, it was quite slow and also very lenient

seancorfield 2026-04-08T16:33:59.835479Z

Yes, massive performance improvements, which allowed us to switch.

seancorfield 2026-04-08T16:34:21.580619Z

I like that it has zero deps 🙂

👍 1
dergutemoritz 2026-04-08T16:35:02.550429Z

last time I checked it still lacked an equivalent of https://fasterxml.github.io/jackson-core/javadoc/2.9/com/fasterxml/jackson/core/JsonParser.Feature.html#STRICT_DUPLICATE_DETECTION though

seancorfield 2026-04-08T16:38:21.133999Z

True, it doesn't have as many knobs'n'dials. That option has quite the performance overhead in Jackson: Note that enabling this feature will incur performance overhead due to having to store and check additional information: this typically adds 20-30% to execution time for basic parsing.

dergutemoritz 2026-04-08T16:38:43.761869Z

Indeed. I imagine it might be less expensive to add to data.json 🤔

dergutemoritz 2026-04-08T16:38:55.322059Z

let's see if there's a JIRA issue about that already...

dergutemoritz 2026-04-08T16:39:12.470229Z

I consider this a rather important security feature to thwart parser differential attacks