[WIP][SPARK-32502][BUILD] Upgrade Guava to 27.0-jre

[viirya]

What changes were proposed in this pull request?

This PR upgrades Guava to newer 27.0-jre.

Why are the changes needed?

Guava 14.0.1 is pretty old and is among the affected Guava versions of CVE-2018-10237.

All newer Hadoop releases are going to be built with a later guava version, e.g. 27.0-jre, including Hadoop 3.1.3, 3.2.1, 3.3.0.

This PR leaves Hadoop version untouched.

Does this PR introduce any user-facing change?

No

How was this patch tested?

Pass the Jenkins tests.

[viirya]

Hadoop 3.2.0 still uses older Guava 11.0.2. I'm not sure if we can just upgrade Guava without touching Hadoop dependency. I want to run the patch through jenkins (sbt and maven) to see how well it works out.

#29326 upgrades Guava and Hadoop together.

[SparkQA]

Test build #126932 has finished for PR 29325 at commit 4888ca0.

• This patch fails due to an unknown error code, -9.
• This patch merges cleanly.
• This patch adds no public classes.

[maropu]

retest this please

[SparkQA]

Test build #126936 has finished for PR 29325 at commit 4888ca0.

• This patch fails Spark unit tests.
• This patch merges cleanly.
• This patch adds no public classes.

[maropu]

hm, it looks a valid failure.

[srowen]

Is this duplicated by #29326 ?
Yes, this can only happen for Hadoop 3.2.1+

[dongjoon-hyun]

I left a comment here.

• [WIP][SPARK-32502][BUILD] Upgrade Guava to 27.0-jre #29326 (comment)

[dongjoon-hyun]

I'd like to recommend to close the PR while keeping JIRA is open. you can reopen this PR when it's ready.

[viirya]

Thanks @dongjoon-hyun