< prev index next >

src/java.base/share/classes/java/io/package-info.java

Print this page
rev 49438 : 8197595: Serialization javadoc should link to security best practices
Reviewed-by: lancea, sean, ahgross


  14  * version 2 for more details (a copy is included in the LICENSE file that
  15  * accompanied this code).
  16  *
  17  * You should have received a copy of the GNU General Public License version
  18  * 2 along with this work; if not, write to the Free Software Foundation,
  19  * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
  20  *
  21  * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
  22  * or visit www.oracle.com if you need additional information or have any
  23  * questions.
  24  */
  25 
  26 /**
  27  * Provides for system input and output through data streams,
  28  * serialization and the file system.
  29  *
  30  * Unless otherwise noted, passing a null argument to a constructor or
  31  * method in any class or interface in this package will cause a
  32  * {@code NullPointerException} to be thrown.
  33  *
  34  * <h2>Package Specification</h2>





  35  * <ul>
  36  *   <li><a href="{@docRoot}/../specs/serialization/index.html">
  37  *       Java Object Serialization Specification </a>
  38  * </ul>
  39  *
  40  * <h2>Related Documentation</h2>
  41  *
  42  * For overviews, tutorials, examples, guides, and tool documentation,
  43  * please see:
  44  * <ul>
  45  *     <li>{@extLink serialver_tool_reference The serialver tool}</li>
  46  *     <li>{@extLink serialization_guide Serialization Documentation}</li>
  47  * </ul>
  48  *
  49  * @since 1.0
  50  */
  51 package java.io;


  14  * version 2 for more details (a copy is included in the LICENSE file that
  15  * accompanied this code).
  16  *
  17  * You should have received a copy of the GNU General Public License version
  18  * 2 along with this work; if not, write to the Free Software Foundation,
  19  * Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
  20  *
  21  * Please contact Oracle, 500 Oracle Parkway, Redwood Shores, CA 94065 USA
  22  * or visit www.oracle.com if you need additional information or have any
  23  * questions.
  24  */
  25 
  26 /**
  27  * Provides for system input and output through data streams,
  28  * serialization and the file system.
  29  *
  30  * Unless otherwise noted, passing a null argument to a constructor or
  31  * method in any class or interface in this package will cause a
  32  * {@code NullPointerException} to be thrown.
  33  *
  34  * <h2>Object Serialization</h2>
  35  * <p><strong>Warning: Deserialization of untrusted data is inherently dangerous
  36  * and should be avoided. Untrusted data should be carefully validated according to the
  37  * "Serialization and Deserialization" section of the
  38  * {@extLink secure_coding_guidelines_javase Secure Coding Guidelines for Java SE}.
  39  * </strong></p>
  40  * <ul>
  41  *   <li><a href="{@docRoot}/../specs/serialization/index.html">
  42  *       Java Object Serialization Specification </a>
  43  *   <li>{@extLink serialization_filter_guide Serial Filtering} best practices</li>






  44  *   <li>{@extLink serialver_tool_reference The serialver tool}</li>

  45  * </ul>
  46  *
  47  * @since 1.0
  48  */
  49 package java.io;
< prev index next >