4-4 - Unsafe Serialization Method

Github 来源:Dubbo 浏览 5 扫码分享 2024-11-19 09:31:42

4-4 - Unsafe Serialization Method
- Possible Causes
- Troubleshooting and Resolution Steps
Feedback

4-4 - Unsafe Serialization Method

Possible Causes

Currently using an unsafe serializer, which is not recommended. The specific configuration is: serialization="java"

Java serialization is unsafe. The Dubbo team does not recommend anyone to use it. If you still want to use it, please follow JEP 290 to set up a serialization filter to prevent deserialization leaks.

Troubleshooting and Resolution Steps

Modify the serialization parameter value. Change the serialization parameter value within the protocol to something else, such as hessian2, fastjson2, etc.

Feedback

Was this page helpful?

Yes No

Last modified September 30, 2024: Update & Translate Overview Docs (#3040) (d37ebceaea7)

当前内容版权归 Dubbo 或其关联方所有，如需对内容或内容相关联开源项目进行关注与资助，请访问 Dubbo .

本文档使用 BookStack 构建