Amit Jain created OAK-7119: ------------------------------ Summary: Restrict de-serialization mechanism for older serialized cache map in DataStoreCacheUtils to the classes required Key: OAK-7119 URL: https://issues.apache.org/jira/browse/OAK-7119 Project: Jackrabbit Oak Issue Type: Bug Components: blob-plugins Reporter: Amit Jain Assignee: Amit Jain Fix For: 1.8, 1.7.15
We could use the class https://commons.apache.org/proper/commons-io/javadocs/api-2.5/org/apache/commons/io/serialization/ValidatingObjectInputStream.html to restrict de-serialization to the required classes and throw errors in case of others. -- This message was sent by Atlassian JIRA (v6.4.14#64029)