x509.subjectAltName
- 类型:<string>
为此证书指定的使用者备用名称。
🌐 The subject alternative name specified for this certificate.
这是一个以逗号分隔的主题备用名称列表。每个条目以一个字符串开头,用于标识主题备用名称的类型,后跟冒号和与该条目关联的值。
🌐 This is a comma-separated list of subject alternative names. Each entry begins with a string identifying the kind of the subject alternative name followed by a colon and the value associated with the entry.
Node.js 的早期版本错误地认为将此属性按照两个字符的序列 ', ' 分割是安全的(见 CVE-2021-44532)。然而,无论是恶意的还是合法的证书,其主题备用名称在以字符串表示时都可能包含该序列。
🌐 Earlier versions of Node.js incorrectly assumed that it is safe to split this
property at the two-character sequence ', ' (see CVE-2021-44532). However,
both malicious and legitimate certificates can contain subject alternative names
that include this sequence when represented as a string.
在表示条目类型的前缀之后,每个条目的其余部分可能会被引号括起来,以表示该值是一个 JSON 字符串字面量。为了向后兼容,Node.js 仅在必要时在此属性中使用 JSON 字符串字面量以避免歧义。第三方代码应准备好处理两种可能的条目格式。
🌐 After the prefix denoting the type of the entry, the remainder of each entry might be enclosed in quotes to indicate that the value is a JSON string literal. For backward compatibility, Node.js only uses JSON string literals within this property when necessary to avoid ambiguity. Third-party code should be prepared to handle both possible entry formats.