Skip to content

doc: warn about short GCM tags visibly #61082

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
nodejs-github-bot merged 1 commit into from
Dec 18, 2025
Merged

doc: warn about short GCM tags visibly #61082

nodejs-github-bot merged 1 commit into from
Dec 18, 2025
+16 −1

Conversation

@tniessen
Copy link
Member

@tniessen tniessen commented Dec 16, 2025
edited
Loading

As was pointed out by Félix Charette (@Sideni), the existing runtime deprecation warning may not provide enough visibility of the underlying issue. This commit adds a (not so pretty) warning to the documentation of the relevant API function setAuthTag(). The warning will be removed when DEP0182 will be moved to End-of-Life status (#61084), presumably with the next major release.

(For some reason, make format-md forces line 969 to be way too long, not sure what's going on there.)

Refs: #52327
Refs: #17523

@tniessen tniessen added crypto Issues and PRs related to the crypto subsystem. doc Issues and PRs related to the documentations. security Issues and PRs related to security. labels Dec 16, 2025
@nodejs-github-bot
Copy link
Collaborator

nodejs-github-bot commented Dec 16, 2025

Review requested:

  • @nodejs/crypto

@tniessen tniessen added the author ready PRs that have at least one approval, no pending requests for changes, and a CI started. label Dec 16, 2025
aduh95
aduh95 reviewed Dec 16, 2025
View reviewed changes
@tniessen tniessen added the commit-queue-squash Add this label to instruct the Commit Queue to squash all the PR commits into the first one. label Dec 16, 2025
@aduh95 aduh95 added the commit-queue Add this label to land a pull request using GitHub Actions. label Dec 16, 2025
@Sideni
Copy link

Sideni commented Dec 16, 2025

Would it be a good idea also to link to that warning here?

@tniessen
doc: warn about short GCM tags visibly
3edeaa8 
As was pointed out by Félix Charette (@Sideni), the existing runtime
deprecation warning may not provide enough visibility of the underlying
issue. This commit adds a (not so pretty) warning to the documentation
of the relevant API function `setAuthTag()`. The warning will be removed
when `DEP0182` will be moved to End-of-Life status, presumably with the
next major release.

Refs: nodejs#52327
Refs: nodejs#17523
@tniessen tniessen force-pushed the doc-warn-gcm-short-tags branch from 4aa3de8 to 3edeaa8 Compare December 16, 2025 20:02
@tniessen
Copy link
Member Author

tniessen commented Dec 16, 2025

@Sideni I think that's fair -- PTAL.

@nodejs-github-bot nodejs-github-bot removed the commit-queue Add this label to land a pull request using GitHub Actions. label Dec 18, 2025
@nodejs-github-bot nodejs-github-bot merged commit e201759 into nodejs:main Dec 18, 2025
15 checks passed
@nodejs-github-bot
Copy link
Collaborator

nodejs-github-bot commented Dec 18, 2025

Landed in e201759

@tniessen tniessen mentioned this pull request Dec 18, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@panva panva panva approved these changes

@lpinca lpinca lpinca approved these changes

@cjihrig cjihrig cjihrig approved these changes

@BethGriggs BethGriggs BethGriggs approved these changes

@aduh95 aduh95 aduh95 approved these changes

Assignees

No one assigned

Labels

author ready PRs that have at least one approval, no pending requests for changes, and a CI started. commit-queue-squash Add this label to instruct the Commit Queue to squash all the PR commits into the first one. crypto Issues and PRs related to the crypto subsystem. doc Issues and PRs related to the documentations. security Issues and PRs related to security.

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

8 participants

@tniessen @nodejs-github-bot @Sideni @panva @lpinca @cjihrig @BethGriggs @aduh95