DEP0182:没有显式 authTagLength 的短 GCM 身份验证标签

¥DEP0182: Short GCM authentication tags without explicit authTagLength

类型：运行时

¥Type: Runtime

打算使用比默认身份验证标签长度短的身份验证标签的应用必须将 crypto.createDecipheriv() 函数的 authTagLength 选项设置为适当的长度。

¥Applications that intend to use authentication tags that are shorter than the default authentication tag length must set the authTagLength option of the crypto.createDecipheriv() function to the appropriate length.

对于 GCM 模式下的密码，decipher.setAuthTag() 函数接受任何有效长度的身份验证标签（请参阅 DEP0090）。为了更好地符合 NIST SP 800-38D 的建议，此行为已被弃用。

¥For ciphers in GCM mode, the decipher.setAuthTag() function accepts authentication tags of any valid length (see DEP0090). This behavior is deprecated to better align with recommendations per NIST SP 800-38D.