1berry/openjdk
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

7201070: Serialization to conform to protocol

Browse Source 
Reviewed-by: dmocek, ahgross, skoivu
This commit is contained in:
Stuart Marks 2012-11-08 15:41:01 -08:00
parent 90f2168fa2
commit 39edc8d2b5
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
jdk/src/share/classes/java/io/ObjectInputStream.java
View File

@ -1752,6 +1752,12 @@ public class ObjectInputStream
ObjectStreamClass desc = readClassDesc(false);
desc.checkDeserialize();
Class<?> cl = desc.forClass();
if (cl == String.class || cl == Class.class
|| cl == ObjectStreamClass.class) {
throw new InvalidClassException("invalid class descriptor");
}
Object obj;
try {
obj = desc.isInstantiable() ? desc.newInstance() : null;