| Package | Description |
|---|---|
| net.jini.config |
Provides a
Configuration interface for obtaining
objects needed to configure applications, such as Exporter or ProxyPreparer
instances, or other application-specific objects, from configuration
files, databases, or other sources. |
| net.jini.constraint |
Provides a basic implementation of
MethodConstraints and a
TrustVerifier for common constraints. |
| net.jini.core.constraint |
Defines constraints and collections of constraints that can be used to control
method invocation, and an interface that proxies implement to allow clients
to specify constraints for remote method calls.
|
| net.jini.core.discovery |
A standard utility class for finding particular lookup services.
|
| net.jini.core.event |
The
RemoteEventListener interface and related standard classes. |
| net.jini.core.lease |
These are distributed leasing interfaces and classes.
|
| net.jini.core.lookup |
These are the lookup service interfaces and classes.
|
| net.jini.core.transaction |
These are the transaction abstraction's interfaces and classes.
|
| net.jini.core.transaction.server |
These are the default transaction semantics for participant/manager interaction.
|
| net.jini.discovery |
These are utility classes and interfaces that conform to the discovery and join
protocol defined in the Jini Discovery and Join Specification.
|
| net.jini.id |
Provides classes and interfaces for using universally unique
identifiers.
|
| net.jini.io |
Provides I/O interfaces and utility classes.
|
| net.jini.security |
Provides mechanisms and abstractions for managing security, especially in the
presence of dynamically downloaded code.
|
| net.jini.security.proxytrust |
Historically, proxy trust relied on the Java sandbox, however with the
plethora of security problems relating to serialization.
|
| org.apache.river.api.io | |
| org.apache.river.discovery |
Provides a set of constraints, low-level utility classes, and provider
interfaces for participating in versions 1 and 2 of the multicast request,
multicast announcement, and unicast discovery protocols.
|
| Class and Description |
|---|
| AtomicSerial
Traditional java de-serialization cannot be used over untrusted connections
for the following reasons:
The serial stream can be manipulated to allow the attacker to instantiate
any Serializable object available on the CLASSPATH or any object that
has a default constructor, such as ClassLoader.
|
| AtomicSerial.GetArg
GetArg is the single argument to AtomicSerial's constructor
|
| Class and Description |
|---|
| AtomicSerial
Traditional java de-serialization cannot be used over untrusted connections
for the following reasons:
The serial stream can be manipulated to allow the attacker to instantiate
any Serializable object available on the CLASSPATH or any object that
has a default constructor, such as ClassLoader.
|
| AtomicSerial.GetArg
GetArg is the single argument to AtomicSerial's constructor
|
| Class and Description |
|---|
| AtomicSerial
Traditional java de-serialization cannot be used over untrusted connections
for the following reasons:
The serial stream can be manipulated to allow the attacker to instantiate
any Serializable object available on the CLASSPATH or any object that
has a default constructor, such as ClassLoader.
|
| AtomicSerial.GetArg
GetArg is the single argument to AtomicSerial's constructor
|
| Class and Description |
|---|
| AtomicSerial
Traditional java de-serialization cannot be used over untrusted connections
for the following reasons:
The serial stream can be manipulated to allow the attacker to instantiate
any Serializable object available on the CLASSPATH or any object that
has a default constructor, such as ClassLoader.
|
| AtomicSerial.GetArg
GetArg is the single argument to AtomicSerial's constructor
|
| Class and Description |
|---|
| AtomicSerial
Traditional java de-serialization cannot be used over untrusted connections
for the following reasons:
The serial stream can be manipulated to allow the attacker to instantiate
any Serializable object available on the CLASSPATH or any object that
has a default constructor, such as ClassLoader.
|
| AtomicSerial.GetArg
GetArg is the single argument to AtomicSerial's constructor
|
| Class and Description |
|---|
| AtomicException
Although most Throwable classes are serialized over AtomicMarshalOutputStream,
only Throwable's fields are transferred.
|
| AtomicSerial
Traditional java de-serialization cannot be used over untrusted connections
for the following reasons:
The serial stream can be manipulated to allow the attacker to instantiate
any Serializable object available on the CLASSPATH or any object that
has a default constructor, such as ClassLoader.
|
| AtomicSerial.GetArg
GetArg is the single argument to AtomicSerial's constructor
|
| Class and Description |
|---|
| AtomicSerial
Traditional java de-serialization cannot be used over untrusted connections
for the following reasons:
The serial stream can be manipulated to allow the attacker to instantiate
any Serializable object available on the CLASSPATH or any object that
has a default constructor, such as ClassLoader.
|
| AtomicSerial.GetArg
GetArg is the single argument to AtomicSerial's constructor
|
| Class and Description |
|---|
| AtomicException
Although most Throwable classes are serialized over AtomicMarshalOutputStream,
only Throwable's fields are transferred.
|
| AtomicSerial
Traditional java de-serialization cannot be used over untrusted connections
for the following reasons:
The serial stream can be manipulated to allow the attacker to instantiate
any Serializable object available on the CLASSPATH or any object that
has a default constructor, such as ClassLoader.
|
| AtomicSerial.GetArg
GetArg is the single argument to AtomicSerial's constructor
|
| Class and Description |
|---|
| AtomicException
Although most Throwable classes are serialized over AtomicMarshalOutputStream,
only Throwable's fields are transferred.
|
| AtomicSerial
Traditional java de-serialization cannot be used over untrusted connections
for the following reasons:
The serial stream can be manipulated to allow the attacker to instantiate
any Serializable object available on the CLASSPATH or any object that
has a default constructor, such as ClassLoader.
|
| AtomicSerial.GetArg
GetArg is the single argument to AtomicSerial's constructor
|
| Class and Description |
|---|
| AtomicException
Although most Throwable classes are serialized over AtomicMarshalOutputStream,
only Throwable's fields are transferred.
|
| AtomicSerial
Traditional java de-serialization cannot be used over untrusted connections
for the following reasons:
The serial stream can be manipulated to allow the attacker to instantiate
any Serializable object available on the CLASSPATH or any object that
has a default constructor, such as ClassLoader.
|
| AtomicSerial.GetArg
GetArg is the single argument to AtomicSerial's constructor
|
| Class and Description |
|---|
| AtomicSerial
Traditional java de-serialization cannot be used over untrusted connections
for the following reasons:
The serial stream can be manipulated to allow the attacker to instantiate
any Serializable object available on the CLASSPATH or any object that
has a default constructor, such as ClassLoader.
|
| AtomicSerial.GetArg
GetArg is the single argument to AtomicSerial's constructor
|
| Class and Description |
|---|
| AtomicSerial
Traditional java de-serialization cannot be used over untrusted connections
for the following reasons:
The serial stream can be manipulated to allow the attacker to instantiate
any Serializable object available on the CLASSPATH or any object that
has a default constructor, such as ClassLoader.
|
| AtomicSerial.GetArg
GetArg is the single argument to AtomicSerial's constructor
|
| Class and Description |
|---|
| AtomicSerial
Traditional java de-serialization cannot be used over untrusted connections
for the following reasons:
The serial stream can be manipulated to allow the attacker to instantiate
any Serializable object available on the CLASSPATH or any object that
has a default constructor, such as ClassLoader.
|
| AtomicSerial.GetArg
GetArg is the single argument to AtomicSerial's constructor
|
| Class and Description |
|---|
| AtomicSerial
Traditional java de-serialization cannot be used over untrusted connections
for the following reasons:
The serial stream can be manipulated to allow the attacker to instantiate
any Serializable object available on the CLASSPATH or any object that
has a default constructor, such as ClassLoader.
|
| AtomicSerial.GetArg
GetArg is the single argument to AtomicSerial's constructor
|
| Class and Description |
|---|
| AtomicExternal
Classes annotated with this are expected to have a single argument public
constructor that accepts an ObjectInput instance and implement Externalizable.
|
| AtomicMarshalInputStream.Reference |
| AtomicSerial
Traditional java de-serialization cannot be used over untrusted connections
for the following reasons:
The serial stream can be manipulated to allow the attacker to instantiate
any Serializable object available on the CLASSPATH or any object that
has a default constructor, such as ClassLoader.
|
| AtomicSerial.GetArg
GetArg is the single argument to AtomicSerial's constructor
|
| AtomicSerial.ReadObject
ReadObject that can be used to read in data and Objects written
to the stream by writeObject() methods.
|
| Serializer
Used to annotate a class that contains a readResolve method with the
return type.
|
| Class and Description |
|---|
| AtomicSerial
Traditional java de-serialization cannot be used over untrusted connections
for the following reasons:
The serial stream can be manipulated to allow the attacker to instantiate
any Serializable object available on the CLASSPATH or any object that
has a default constructor, such as ClassLoader.
|
Copyright © 2016–2018 The Apache Software Foundation. All rights reserved.