root
/
spring-framework
mirror of https://github.com/spring-projects/spring-framework.git
1
0
Fork 0
Code Issues Actions 8 Packages Projects Releases Wiki Activity

DefaultDeserializer and DeserializingConverter allow for specifying a ClassLoader 

Issue: SPR-13409
This commit is contained in:
Juergen Hoeller 2015-08-31 17:31:41 +02:00
parent d4a23b81e9
commit d99717c1cb
2 changed files with 48 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

33
spring-core/src/main/java/org/springframework/core/serializer/DefaultDeserializer.java
View File

@ -1,5 +1,5 @@
/* /*
* Copyright 2002-2012 the original author or authors. * Copyright 2002-2015 the original author or authors.
* *
* Licensed under the Apache License, Version 2.0 (the "License"); * Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License. * you may not use this file except in compliance with the License.
@ -20,23 +20,50 @@ import java.io.IOException;
import java.io.InputStream; import java.io.InputStream;
import java.io.ObjectInputStream; import java.io.ObjectInputStream;
import org.springframework.core.ConfigurableObjectInputStream;
import org.springframework.core.NestedIOException; import org.springframework.core.NestedIOException;
/** /**
* Deserializer that reads an input stream using Java Serialization. * A default {@link Deserializer} implementation that reads an input stream
* using Java serialization.
* *
* @author Gary Russell * @author Gary Russell
* @author Mark Fisher * @author Mark Fisher
* @author Juergen Hoeller
* @since 3.0.5 * @since 3.0.5
* @see ObjectInputStream
*/ */
public class DefaultDeserializer implements Deserializer<Object> { public class DefaultDeserializer implements Deserializer<Object> {
private final ClassLoader classLoader;
/**
* Create a {@code DefaultDeserializer} with default {@link ObjectInputStream}
* configuration, using the "latest user-defined ClassLoader".
*/
public DefaultDeserializer() {
this.classLoader = null;
}
/**
* Create a {@code DefaultDeserializer} for using an {@link ObjectInputStream}
* with the given {@code ClassLoader}.
* @since 4.2.1
* @see ConfigurableObjectInputStream#ConfigurableObjectInputStream(InputStream, ClassLoader)
*/
public DefaultDeserializer(ClassLoader classLoader) {
this.classLoader = classLoader;
}
/** /**
* Reads the input stream and deserializes into an object. * Reads the input stream and deserializes into an object.
* @see ObjectInputStream#readObject()
*/ */
@Override @Override
public Object deserialize(InputStream inputStream) throws IOException { public Object deserialize(InputStream inputStream) throws IOException {
ObjectInputStream objectInputStream = new ObjectInputStream(inputStream); ObjectInputStream objectInputStream = new ConfigurableObjectInputStream(inputStream, this.classLoader);
try { try {
return objectInputStream.readObject(); return objectInputStream.readObject();
} }

22
spring-core/src/main/java/org/springframework/core/serializer/support/DeserializingConverter.java
View File

@ -1,5 +1,5 @@
/* /*
* Copyright 2002-2012 the original author or authors. * Copyright 2002-2015 the original author or authors.
* *
* Licensed under the Apache License, Version 2.0 (the "License"); * Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License. * you may not use this file except in compliance with the License.
@ -24,11 +24,13 @@ import org.springframework.core.serializer.Deserializer;
import org.springframework.util.Assert; import org.springframework.util.Assert;
/** /**
* A {@link Converter} that delegates to a {@link org.springframework.core.serializer.Deserializer} * A {@link Converter} that delegates to a
* {@link org.springframework.core.serializer.Deserializer}
* to convert data in a byte array to an object. * to convert data in a byte array to an object.
* *
* @author Gary Russell * @author Gary Russell
* @author Mark Fisher * @author Mark Fisher
* @author Juergen Hoeller
* @since 3.0.5 * @since 3.0.5
*/ */
public class DeserializingConverter implements Converter<byte[], Object> { public class DeserializingConverter implements Converter<byte[], Object> {
@ -37,14 +39,26 @@ public class DeserializingConverter implements Converter<byte[], Object> {
/** /**
* Create a default DeserializingConverter that uses standard Java deserialization. * Create a {@code DeserializingConverter} with default {@link java.io.ObjectInputStream}
* configuration, using the "latest user-defined ClassLoader".
* @see DefaultDeserializer#DefaultDeserializer()
*/ */
public DeserializingConverter() { public DeserializingConverter() {
this.deserializer = new DefaultDeserializer(); this.deserializer = new DefaultDeserializer();
} }
/** /**
* Create a DeserializingConverter that delegates to the provided {@link Deserializer}. * Create a {@code DeserializingConverter} for using an {@link java.io.ObjectInputStream}
* with the given {@code ClassLoader}.
* @since 4.2.1
* @see DefaultDeserializer#DefaultDeserializer(ClassLoader)
*/
public DeserializingConverter(ClassLoader classLoader) {
this.deserializer = new DefaultDeserializer(classLoader);
}
/**
* Create a {@code DeserializingConverter} that delegates to the provided {@link Deserializer}.
*/ */
public DeserializingConverter(Deserializer<Object> deserializer) { public DeserializingConverter(Deserializer<Object> deserializer) {
Assert.notNull(deserializer, "Deserializer must not be null"); Assert.notNull(deserializer, "Deserializer must not be null");