DOCUMENTATION
COMMUNITY
News Security Notices Contributor's Guide
Blog
DOWNLOAD
ECOSYSTEM
Code Generator Visualizable Console Proxyless Mesh More Demos

EN 中文

中文

DOCUMENTATION
COMMUNITY
News Security Notices Contributor's Guide
Blog
DOWNLOAD
ECOSYSTEM
Code Generator Visualizable Console Proxyless Mesh More Demos

Documentation
User Manual
Java SDK
Reference Manual
Error Code FAQ
4 - Protocol Layer
4-21 - Unsafe serialization data detected

4-21 - Unsafe serialization data detected

4-21 - Unsafe serialization data detected

Possible Causes

The current server may be under attack, or the built-in class checking logic of Dubbo has not scanned the classes you defined.

Troubleshooting and Resolution Steps

If the request source is an attack source, please promptly reinforce security.
If the request source is expected, declare the class names you are using in the security/serialize.allowlist resource file, and Dubbo will automatically load them into the allowlist. Please refer to the Class Checking Mechanism article.

Currently, Dubbo can operate in monitoring mode and restriction mode. Monitoring mode only logs, without interception; restriction mode will perform interception.

Feedback

Was this page helpful?

Last modified September 30, 2024: Update & Translate Overview Docs (#3040) (d37ebceaea7)

Edit this page Create child page Create an issue Create project issue

- Possible Causes
- Troubleshooting and Resolution Steps

Follow us

Subscribe to one or more of the following channels to receive project updates, keep connection with community developers.

DOCUMENTATION
Overview
Quick Start
Developer guide

RESOURCES
Community

© 2024 The Apache Software Foundation. Apache Dubbo, Dubbo, Apache, the Apache feather logo, and the Apache Dubbo project logo are either registered trademarks or trademarks of The Apache Software Foundation in the United States and other countries. All Rights Reserved