BinaryFormatter.UnsafeDeserialize(Stream, HeaderHandler) BinaryFormatter.UnsafeDeserialize(Stream, HeaderHandler) BinaryFormatter.UnsafeDeserialize(Stream, HeaderHandler) BinaryFormatter.UnsafeDeserialize(Stream, HeaderHandler) Method

Definition

Deserializes the specified stream into an object graph. The provided HeaderHandler handles any headers in that stream.

public:
 System::Object ^ UnsafeDeserialize(System::IO::Stream ^ serializationStream, System::Runtime::Remoting::Messaging::HeaderHandler ^ handler);
[System.Runtime.InteropServices.ComVisible(false)]
[System.Security.SecurityCritical]
public object UnsafeDeserialize (System.IO.Stream serializationStream, System.Runtime.Remoting.Messaging.HeaderHandler handler);
member this.UnsafeDeserialize : System.IO.Stream * System.Runtime.Remoting.Messaging.HeaderHandler -> obj
Public Function UnsafeDeserialize (serializationStream As Stream, handler As HeaderHandler) As Object

Parameters

serializationStream
Stream Stream Stream Stream

The stream from which to deserialize the object graph.

handler
HeaderHandler HeaderHandler HeaderHandler HeaderHandler

The HeaderHandler that handles any headers in the serializationStream. Can be null.

Returns

The deserialized object or the top object (root) of the object graph.

Exceptions

The serializationStream supports seeking, but its length is 0.

The caller does not have the required permission.

Remarks

Headers are used only for specific remoting applications.

This method uses SecurityAction.LinkDemand to prevent it from being called from untrusted code; only the immediate caller is required to have SecurityPermissionAttribute.SerializationFormatter permission. Do not use this method if your code can be called from partially trusted code. In partially trusted scenarios, use Deserialize instead. In full trust scenarios, UnsafeDeserialize provides better performance than Deserialize.

For successful deserialization, the current position in the stream must be at the beginning of the object graph.

Important

Calling this method with untrusted data is a security risk. Call this method only with trusted data. For more information, see Data Validation.

Security

SecurityPermission
To provide serialization services. Associated enumeration: SerializationFormatter.

Applies to