????
org.apache.commons.io.serialization.ValidatingObjectInputStream
???
??
This package provides a framework for controlling the deserialization of classes.
-
org.apache.commons.io.serialization?ValidatingObjectInputStream???
??????????Accept the specified classes for deserialization, unless they are otherwise rejected.Accept the wildcard specified classes for deserialization, unless they are otherwise rejected.Accept class names that match the supplied pattern for deserialization, unless they are otherwise rejected.ValidatingObjectInputStream.accept
(ClassNameMatcher m) Accept class names where the supplied ClassNameMatcher matches for deserialization, unless they are otherwise rejected.Reject the specified classes for deserialization, even if they are otherwise accepted.Reject the wildcard specified classes for deserialization, even if they are otherwise accepted.Reject class names that match the supplied pattern for deserialization, even if they are otherwise accepted.ValidatingObjectInputStream.reject
(ClassNameMatcher m) Reject class names where the supplied ClassNameMatcher matches for deserialization, even if they are otherwise accepted.