The Tor Browser / file comparison
comparison: security/nss/lib/ssl/SSLerrs.h
security/nss/lib/ssl/SSLerrs.h
- changeset 0
- 6474c204b198
equal
deleted
inserted
replaced
| -1:000000000000 | 0:b7dd478da727 |
|---|---|
| 1 /* This Source Code Form is subject to the terms of the Mozilla Public | |
| 2 * License, v. 2.0. If a copy of the MPL was not distributed with this | |
| 3 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */ | |
| 4 | |
| 5 /* SSL-specific security error codes */ | |
| 6 /* caller must include "sslerr.h" */ | |
| 7 | |
| 8 ER3(SSL_ERROR_EXPORT_ONLY_SERVER, SSL_ERROR_BASE + 0, | |
| 9 "Unable to communicate securely. Peer does not support high-grade encryption.") | |
| 10 | |
| 11 ER3(SSL_ERROR_US_ONLY_SERVER, SSL_ERROR_BASE + 1, | |
| 12 "Unable to communicate securely. Peer requires high-grade encryption which is not supported.") | |
| 13 | |
| 14 ER3(SSL_ERROR_NO_CYPHER_OVERLAP, SSL_ERROR_BASE + 2, | |
| 15 "Cannot communicate securely with peer: no common encryption algorithm(s).") | |
| 16 | |
| 17 ER3(SSL_ERROR_NO_CERTIFICATE, SSL_ERROR_BASE + 3, | |
| 18 "Unable to find the certificate or key necessary for authentication.") | |
| 19 | |
| 20 ER3(SSL_ERROR_BAD_CERTIFICATE, SSL_ERROR_BASE + 4, | |
| 21 "Unable to communicate securely with peer: peers's certificate was rejected.") | |
| 22 | |
| 23 ER3(SSL_ERROR_UNUSED_5, SSL_ERROR_BASE + 5, | |
| 24 "Unrecognized SSL error code.") | |
| 25 | |
| 26 ER3(SSL_ERROR_BAD_CLIENT, SSL_ERROR_BASE + 6, | |
| 27 "The server has encountered bad data from the client.") | |
| 28 | |
| 29 ER3(SSL_ERROR_BAD_SERVER, SSL_ERROR_BASE + 7, | |
| 30 "The client has encountered bad data from the server.") | |
| 31 | |
| 32 ER3(SSL_ERROR_UNSUPPORTED_CERTIFICATE_TYPE, SSL_ERROR_BASE + 8, | |
| 33 "Unsupported certificate type.") | |
| 34 | |
| 35 ER3(SSL_ERROR_UNSUPPORTED_VERSION, SSL_ERROR_BASE + 9, | |
| 36 "Peer using unsupported version of security protocol.") | |
| 37 | |
| 38 ER3(SSL_ERROR_UNUSED_10, SSL_ERROR_BASE + 10, | |
| 39 "Unrecognized SSL error code.") | |
| 40 | |
| 41 ER3(SSL_ERROR_WRONG_CERTIFICATE, SSL_ERROR_BASE + 11, | |
| 42 "Client authentication failed: private key in key database does not match public key in certificate database.") | |
| 43 | |
| 44 ER3(SSL_ERROR_BAD_CERT_DOMAIN, SSL_ERROR_BASE + 12, | |
| 45 "Unable to communicate securely with peer: requested domain name does not match the server's certificate.") | |
| 46 | |
| 47 ER3(SSL_ERROR_POST_WARNING, SSL_ERROR_BASE + 13, | |
| 48 "Unrecognized SSL error code.") | |
| 49 | |
| 50 ER3(SSL_ERROR_SSL2_DISABLED, (SSL_ERROR_BASE + 14), | |
| 51 "Peer only supports SSL version 2, which is locally disabled.") | |
| 52 | |
| 53 | |
| 54 ER3(SSL_ERROR_BAD_MAC_READ, (SSL_ERROR_BASE + 15), | |
| 55 "SSL received a record with an incorrect Message Authentication Code.") | |
| 56 | |
| 57 ER3(SSL_ERROR_BAD_MAC_ALERT, (SSL_ERROR_BASE + 16), | |
| 58 "SSL peer reports incorrect Message Authentication Code.") | |
| 59 | |
| 60 ER3(SSL_ERROR_BAD_CERT_ALERT, (SSL_ERROR_BASE + 17), | |
| 61 "SSL peer cannot verify your certificate.") | |
| 62 | |
| 63 ER3(SSL_ERROR_REVOKED_CERT_ALERT, (SSL_ERROR_BASE + 18), | |
| 64 "SSL peer rejected your certificate as revoked.") | |
| 65 | |
| 66 ER3(SSL_ERROR_EXPIRED_CERT_ALERT, (SSL_ERROR_BASE + 19), | |
| 67 "SSL peer rejected your certificate as expired.") | |
| 68 | |
| 69 ER3(SSL_ERROR_SSL_DISABLED, (SSL_ERROR_BASE + 20), | |
| 70 "Cannot connect: SSL is disabled.") | |
| 71 | |
| 72 ER3(SSL_ERROR_FORTEZZA_PQG, (SSL_ERROR_BASE + 21), | |
| 73 "Cannot connect: SSL peer is in another FORTEZZA domain.") | |
| 74 | |
| 75 ER3(SSL_ERROR_UNKNOWN_CIPHER_SUITE , (SSL_ERROR_BASE + 22), | |
| 76 "An unknown SSL cipher suite has been requested.") | |
| 77 | |
| 78 ER3(SSL_ERROR_NO_CIPHERS_SUPPORTED , (SSL_ERROR_BASE + 23), | |
| 79 "No cipher suites are present and enabled in this program.") | |
| 80 | |
| 81 ER3(SSL_ERROR_BAD_BLOCK_PADDING , (SSL_ERROR_BASE + 24), | |
| 82 "SSL received a record with bad block padding.") | |
| 83 | |
| 84 ER3(SSL_ERROR_RX_RECORD_TOO_LONG , (SSL_ERROR_BASE + 25), | |
| 85 "SSL received a record that exceeded the maximum permissible length.") | |
| 86 | |
| 87 ER3(SSL_ERROR_TX_RECORD_TOO_LONG , (SSL_ERROR_BASE + 26), | |
| 88 "SSL attempted to send a record that exceeded the maximum permissible length.") | |
| 89 | |
| 90 /* | |
| 91 * Received a malformed (too long or short or invalid content) SSL handshake. | |
| 92 */ | |
| 93 ER3(SSL_ERROR_RX_MALFORMED_HELLO_REQUEST , (SSL_ERROR_BASE + 27), | |
| 94 "SSL received a malformed Hello Request handshake message.") | |
| 95 | |
| 96 ER3(SSL_ERROR_RX_MALFORMED_CLIENT_HELLO , (SSL_ERROR_BASE + 28), | |
| 97 "SSL received a malformed Client Hello handshake message.") | |
| 98 | |
| 99 ER3(SSL_ERROR_RX_MALFORMED_SERVER_HELLO , (SSL_ERROR_BASE + 29), | |
| 100 "SSL received a malformed Server Hello handshake message.") | |
| 101 | |
| 102 ER3(SSL_ERROR_RX_MALFORMED_CERTIFICATE , (SSL_ERROR_BASE + 30), | |
| 103 "SSL received a malformed Certificate handshake message.") | |
| 104 | |
| 105 ER3(SSL_ERROR_RX_MALFORMED_SERVER_KEY_EXCH , (SSL_ERROR_BASE + 31), | |
| 106 "SSL received a malformed Server Key Exchange handshake message.") | |
| 107 | |
| 108 ER3(SSL_ERROR_RX_MALFORMED_CERT_REQUEST , (SSL_ERROR_BASE + 32), | |
| 109 "SSL received a malformed Certificate Request handshake message.") | |
| 110 | |
| 111 ER3(SSL_ERROR_RX_MALFORMED_HELLO_DONE , (SSL_ERROR_BASE + 33), | |
| 112 "SSL received a malformed Server Hello Done handshake message.") | |
| 113 | |
| 114 ER3(SSL_ERROR_RX_MALFORMED_CERT_VERIFY , (SSL_ERROR_BASE + 34), | |
| 115 "SSL received a malformed Certificate Verify handshake message.") | |
| 116 | |
| 117 ER3(SSL_ERROR_RX_MALFORMED_CLIENT_KEY_EXCH , (SSL_ERROR_BASE + 35), | |
| 118 "SSL received a malformed Client Key Exchange handshake message.") | |
| 119 | |
| 120 ER3(SSL_ERROR_RX_MALFORMED_FINISHED , (SSL_ERROR_BASE + 36), | |
| 121 "SSL received a malformed Finished handshake message.") | |
| 122 | |
| 123 /* | |
| 124 * Received a malformed (too long or short) SSL record. | |
| 125 */ | |
| 126 ER3(SSL_ERROR_RX_MALFORMED_CHANGE_CIPHER , (SSL_ERROR_BASE + 37), | |
| 127 "SSL received a malformed Change Cipher Spec record.") | |
| 128 | |
| 129 ER3(SSL_ERROR_RX_MALFORMED_ALERT , (SSL_ERROR_BASE + 38), | |
| 130 "SSL received a malformed Alert record.") | |
| 131 | |
| 132 ER3(SSL_ERROR_RX_MALFORMED_HANDSHAKE , (SSL_ERROR_BASE + 39), | |
| 133 "SSL received a malformed Handshake record.") | |
| 134 | |
| 135 ER3(SSL_ERROR_RX_MALFORMED_APPLICATION_DATA , (SSL_ERROR_BASE + 40), | |
| 136 "SSL received a malformed Application Data record.") | |
| 137 | |
| 138 /* | |
| 139 * Received an SSL handshake that was inappropriate for the state we're in. | |
| 140 * E.g. Server received message from server, or wrong state in state machine. | |
| 141 */ | |
| 142 ER3(SSL_ERROR_RX_UNEXPECTED_HELLO_REQUEST , (SSL_ERROR_BASE + 41), | |
| 143 "SSL received an unexpected Hello Request handshake message.") | |
| 144 | |
| 145 ER3(SSL_ERROR_RX_UNEXPECTED_CLIENT_HELLO , (SSL_ERROR_BASE + 42), | |
| 146 "SSL received an unexpected Client Hello handshake message.") | |
| 147 | |
| 148 ER3(SSL_ERROR_RX_UNEXPECTED_SERVER_HELLO , (SSL_ERROR_BASE + 43), | |
| 149 "SSL received an unexpected Server Hello handshake message.") | |
| 150 | |
| 151 ER3(SSL_ERROR_RX_UNEXPECTED_CERTIFICATE , (SSL_ERROR_BASE + 44), | |
| 152 "SSL received an unexpected Certificate handshake message.") | |
| 153 | |
| 154 ER3(SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH , (SSL_ERROR_BASE + 45), | |
| 155 "SSL received an unexpected Server Key Exchange handshake message.") | |
| 156 | |
| 157 ER3(SSL_ERROR_RX_UNEXPECTED_CERT_REQUEST , (SSL_ERROR_BASE + 46), | |
| 158 "SSL received an unexpected Certificate Request handshake message.") | |
| 159 | |
| 160 ER3(SSL_ERROR_RX_UNEXPECTED_HELLO_DONE , (SSL_ERROR_BASE + 47), | |
| 161 "SSL received an unexpected Server Hello Done handshake message.") | |
| 162 | |
| 163 ER3(SSL_ERROR_RX_UNEXPECTED_CERT_VERIFY , (SSL_ERROR_BASE + 48), | |
| 164 "SSL received an unexpected Certificate Verify handshake message.") | |
| 165 | |
| 166 ER3(SSL_ERROR_RX_UNEXPECTED_CLIENT_KEY_EXCH , (SSL_ERROR_BASE + 49), | |
| 167 "SSL received an unexpected Client Key Exchange handshake message.") | |
| 168 | |
| 169 ER3(SSL_ERROR_RX_UNEXPECTED_FINISHED , (SSL_ERROR_BASE + 50), | |
| 170 "SSL received an unexpected Finished handshake message.") | |
| 171 | |
| 172 /* | |
| 173 * Received an SSL record that was inappropriate for the state we're in. | |
| 174 */ | |
| 175 ER3(SSL_ERROR_RX_UNEXPECTED_CHANGE_CIPHER , (SSL_ERROR_BASE + 51), | |
| 176 "SSL received an unexpected Change Cipher Spec record.") | |
| 177 | |
| 178 ER3(SSL_ERROR_RX_UNEXPECTED_ALERT , (SSL_ERROR_BASE + 52), | |
| 179 "SSL received an unexpected Alert record.") | |
| 180 | |
| 181 ER3(SSL_ERROR_RX_UNEXPECTED_HANDSHAKE , (SSL_ERROR_BASE + 53), | |
| 182 "SSL received an unexpected Handshake record.") | |
| 183 | |
| 184 ER3(SSL_ERROR_RX_UNEXPECTED_APPLICATION_DATA, (SSL_ERROR_BASE + 54), | |
| 185 "SSL received an unexpected Application Data record.") | |
| 186 | |
| 187 /* | |
| 188 * Received record/message with unknown discriminant. | |
| 189 */ | |
| 190 ER3(SSL_ERROR_RX_UNKNOWN_RECORD_TYPE , (SSL_ERROR_BASE + 55), | |
| 191 "SSL received a record with an unknown content type.") | |
| 192 | |
| 193 ER3(SSL_ERROR_RX_UNKNOWN_HANDSHAKE , (SSL_ERROR_BASE + 56), | |
| 194 "SSL received a handshake message with an unknown message type.") | |
| 195 | |
| 196 ER3(SSL_ERROR_RX_UNKNOWN_ALERT , (SSL_ERROR_BASE + 57), | |
| 197 "SSL received an alert record with an unknown alert description.") | |
| 198 | |
| 199 /* | |
| 200 * Received an alert reporting what we did wrong. (more alerts above) | |
| 201 */ | |
| 202 ER3(SSL_ERROR_CLOSE_NOTIFY_ALERT , (SSL_ERROR_BASE + 58), | |
| 203 "SSL peer has closed this connection.") | |
| 204 | |
| 205 ER3(SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT , (SSL_ERROR_BASE + 59), | |
| 206 "SSL peer was not expecting a handshake message it received.") | |
| 207 | |
| 208 ER3(SSL_ERROR_DECOMPRESSION_FAILURE_ALERT , (SSL_ERROR_BASE + 60), | |
| 209 "SSL peer was unable to successfully decompress an SSL record it received.") | |
| 210 | |
| 211 ER3(SSL_ERROR_HANDSHAKE_FAILURE_ALERT , (SSL_ERROR_BASE + 61), | |
| 212 "SSL peer was unable to negotiate an acceptable set of security parameters.") | |
| 213 | |
| 214 ER3(SSL_ERROR_ILLEGAL_PARAMETER_ALERT , (SSL_ERROR_BASE + 62), | |
| 215 "SSL peer rejected a handshake message for unacceptable content.") | |
| 216 | |
| 217 ER3(SSL_ERROR_UNSUPPORTED_CERT_ALERT , (SSL_ERROR_BASE + 63), | |
| 218 "SSL peer does not support certificates of the type it received.") | |
| 219 | |
| 220 ER3(SSL_ERROR_CERTIFICATE_UNKNOWN_ALERT , (SSL_ERROR_BASE + 64), | |
| 221 "SSL peer had some unspecified issue with the certificate it received.") | |
| 222 | |
| 223 | |
| 224 ER3(SSL_ERROR_GENERATE_RANDOM_FAILURE , (SSL_ERROR_BASE + 65), | |
| 225 "SSL experienced a failure of its random number generator.") | |
| 226 | |
| 227 ER3(SSL_ERROR_SIGN_HASHES_FAILURE , (SSL_ERROR_BASE + 66), | |
| 228 "Unable to digitally sign data required to verify your certificate.") | |
| 229 | |
| 230 ER3(SSL_ERROR_EXTRACT_PUBLIC_KEY_FAILURE , (SSL_ERROR_BASE + 67), | |
| 231 "SSL was unable to extract the public key from the peer's certificate.") | |
| 232 | |
| 233 ER3(SSL_ERROR_SERVER_KEY_EXCHANGE_FAILURE , (SSL_ERROR_BASE + 68), | |
| 234 "Unspecified failure while processing SSL Server Key Exchange handshake.") | |
| 235 | |
| 236 ER3(SSL_ERROR_CLIENT_KEY_EXCHANGE_FAILURE , (SSL_ERROR_BASE + 69), | |
| 237 "Unspecified failure while processing SSL Client Key Exchange handshake.") | |
| 238 | |
| 239 ER3(SSL_ERROR_ENCRYPTION_FAILURE , (SSL_ERROR_BASE + 70), | |
| 240 "Bulk data encryption algorithm failed in selected cipher suite.") | |
| 241 | |
| 242 ER3(SSL_ERROR_DECRYPTION_FAILURE , (SSL_ERROR_BASE + 71), | |
| 243 "Bulk data decryption algorithm failed in selected cipher suite.") | |
| 244 | |
| 245 ER3(SSL_ERROR_SOCKET_WRITE_FAILURE , (SSL_ERROR_BASE + 72), | |
| 246 "Attempt to write encrypted data to underlying socket failed.") | |
| 247 | |
| 248 ER3(SSL_ERROR_MD5_DIGEST_FAILURE , (SSL_ERROR_BASE + 73), | |
| 249 "MD5 digest function failed.") | |
| 250 | |
| 251 ER3(SSL_ERROR_SHA_DIGEST_FAILURE , (SSL_ERROR_BASE + 74), | |
| 252 "SHA-1 digest function failed.") | |
| 253 | |
| 254 ER3(SSL_ERROR_MAC_COMPUTATION_FAILURE , (SSL_ERROR_BASE + 75), | |
| 255 "MAC computation failed.") | |
| 256 | |
| 257 ER3(SSL_ERROR_SYM_KEY_CONTEXT_FAILURE , (SSL_ERROR_BASE + 76), | |
| 258 "Failure to create Symmetric Key context.") | |
| 259 | |
| 260 ER3(SSL_ERROR_SYM_KEY_UNWRAP_FAILURE , (SSL_ERROR_BASE + 77), | |
| 261 "Failure to unwrap the Symmetric key in Client Key Exchange message.") | |
| 262 | |
| 263 ER3(SSL_ERROR_PUB_KEY_SIZE_LIMIT_EXCEEDED , (SSL_ERROR_BASE + 78), | |
| 264 "SSL Server attempted to use domestic-grade public key with export cipher suite.") | |
| 265 | |
| 266 ER3(SSL_ERROR_IV_PARAM_FAILURE , (SSL_ERROR_BASE + 79), | |
| 267 "PKCS11 code failed to translate an IV into a param.") | |
| 268 | |
| 269 ER3(SSL_ERROR_INIT_CIPHER_SUITE_FAILURE , (SSL_ERROR_BASE + 80), | |
| 270 "Failed to initialize the selected cipher suite.") | |
| 271 | |
| 272 ER3(SSL_ERROR_SESSION_KEY_GEN_FAILURE , (SSL_ERROR_BASE + 81), | |
| 273 "Client failed to generate session keys for SSL session.") | |
| 274 | |
| 275 ER3(SSL_ERROR_NO_SERVER_KEY_FOR_ALG , (SSL_ERROR_BASE + 82), | |
| 276 "Server has no key for the attempted key exchange algorithm.") | |
| 277 | |
| 278 ER3(SSL_ERROR_TOKEN_INSERTION_REMOVAL , (SSL_ERROR_BASE + 83), | |
| 279 "PKCS#11 token was inserted or removed while operation was in progress.") | |
| 280 | |
| 281 ER3(SSL_ERROR_TOKEN_SLOT_NOT_FOUND , (SSL_ERROR_BASE + 84), | |
| 282 "No PKCS#11 token could be found to do a required operation.") | |
| 283 | |
| 284 ER3(SSL_ERROR_NO_COMPRESSION_OVERLAP , (SSL_ERROR_BASE + 85), | |
| 285 "Cannot communicate securely with peer: no common compression algorithm(s).") | |
| 286 | |
| 287 ER3(SSL_ERROR_HANDSHAKE_NOT_COMPLETED , (SSL_ERROR_BASE + 86), | |
| 288 "Cannot perform the operation until the handshake is complete.") | |
| 289 | |
| 290 ER3(SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE , (SSL_ERROR_BASE + 87), | |
| 291 "Received incorrect handshakes hash values from peer.") | |
| 292 | |
| 293 ER3(SSL_ERROR_CERT_KEA_MISMATCH , (SSL_ERROR_BASE + 88), | |
| 294 "The certificate provided cannot be used with the selected key exchange algorithm.") | |
| 295 | |
| 296 ER3(SSL_ERROR_NO_TRUSTED_SSL_CLIENT_CA , (SSL_ERROR_BASE + 89), | |
| 297 "No certificate authority is trusted for SSL client authentication.") | |
| 298 | |
| 299 ER3(SSL_ERROR_SESSION_NOT_FOUND , (SSL_ERROR_BASE + 90), | |
| 300 "Client's SSL session ID not found in server's session cache.") | |
| 301 | |
| 302 ER3(SSL_ERROR_DECRYPTION_FAILED_ALERT , (SSL_ERROR_BASE + 91), | |
| 303 "Peer was unable to decrypt an SSL record it received.") | |
| 304 | |
| 305 ER3(SSL_ERROR_RECORD_OVERFLOW_ALERT , (SSL_ERROR_BASE + 92), | |
| 306 "Peer received an SSL record that was longer than is permitted.") | |
| 307 | |
| 308 ER3(SSL_ERROR_UNKNOWN_CA_ALERT , (SSL_ERROR_BASE + 93), | |
| 309 "Peer does not recognize and trust the CA that issued your certificate.") | |
| 310 | |
| 311 ER3(SSL_ERROR_ACCESS_DENIED_ALERT , (SSL_ERROR_BASE + 94), | |
| 312 "Peer received a valid certificate, but access was denied.") | |
| 313 | |
| 314 ER3(SSL_ERROR_DECODE_ERROR_ALERT , (SSL_ERROR_BASE + 95), | |
| 315 "Peer could not decode an SSL handshake message.") | |
| 316 | |
| 317 ER3(SSL_ERROR_DECRYPT_ERROR_ALERT , (SSL_ERROR_BASE + 96), | |
| 318 "Peer reports failure of signature verification or key exchange.") | |
| 319 | |
| 320 ER3(SSL_ERROR_EXPORT_RESTRICTION_ALERT , (SSL_ERROR_BASE + 97), | |
| 321 "Peer reports negotiation not in compliance with export regulations.") | |
| 322 | |
| 323 ER3(SSL_ERROR_PROTOCOL_VERSION_ALERT , (SSL_ERROR_BASE + 98), | |
| 324 "Peer reports incompatible or unsupported protocol version.") | |
| 325 | |
| 326 ER3(SSL_ERROR_INSUFFICIENT_SECURITY_ALERT , (SSL_ERROR_BASE + 99), | |
| 327 "Server requires ciphers more secure than those supported by client.") | |
| 328 | |
| 329 ER3(SSL_ERROR_INTERNAL_ERROR_ALERT , (SSL_ERROR_BASE + 100), | |
| 330 "Peer reports it experienced an internal error.") | |
| 331 | |
| 332 ER3(SSL_ERROR_USER_CANCELED_ALERT , (SSL_ERROR_BASE + 101), | |
| 333 "Peer user canceled handshake.") | |
| 334 | |
| 335 ER3(SSL_ERROR_NO_RENEGOTIATION_ALERT , (SSL_ERROR_BASE + 102), | |
| 336 "Peer does not permit renegotiation of SSL security parameters.") | |
| 337 | |
| 338 ER3(SSL_ERROR_SERVER_CACHE_NOT_CONFIGURED , (SSL_ERROR_BASE + 103), | |
| 339 "SSL server cache not configured and not disabled for this socket.") | |
| 340 | |
| 341 ER3(SSL_ERROR_UNSUPPORTED_EXTENSION_ALERT , (SSL_ERROR_BASE + 104), | |
| 342 "SSL peer does not support requested TLS hello extension.") | |
| 343 | |
| 344 ER3(SSL_ERROR_CERTIFICATE_UNOBTAINABLE_ALERT , (SSL_ERROR_BASE + 105), | |
| 345 "SSL peer could not obtain your certificate from the supplied URL.") | |
| 346 | |
| 347 ER3(SSL_ERROR_UNRECOGNIZED_NAME_ALERT , (SSL_ERROR_BASE + 106), | |
| 348 "SSL peer has no certificate for the requested DNS name.") | |
| 349 | |
| 350 ER3(SSL_ERROR_BAD_CERT_STATUS_RESPONSE_ALERT , (SSL_ERROR_BASE + 107), | |
| 351 "SSL peer was unable to get an OCSP response for its certificate.") | |
| 352 | |
| 353 ER3(SSL_ERROR_BAD_CERT_HASH_VALUE_ALERT , (SSL_ERROR_BASE + 108), | |
| 354 "SSL peer reported bad certificate hash value.") | |
| 355 | |
| 356 ER3(SSL_ERROR_RX_UNEXPECTED_NEW_SESSION_TICKET, (SSL_ERROR_BASE + 109), | |
| 357 "SSL received an unexpected New Session Ticket handshake message.") | |
| 358 | |
| 359 ER3(SSL_ERROR_RX_MALFORMED_NEW_SESSION_TICKET, (SSL_ERROR_BASE + 110), | |
| 360 "SSL received a malformed New Session Ticket handshake message.") | |
| 361 | |
| 362 ER3(SSL_ERROR_DECOMPRESSION_FAILURE, (SSL_ERROR_BASE + 111), | |
| 363 "SSL received a compressed record that could not be decompressed.") | |
| 364 | |
| 365 ER3(SSL_ERROR_RENEGOTIATION_NOT_ALLOWED, (SSL_ERROR_BASE + 112), | |
| 366 "Renegotiation is not allowed on this SSL socket.") | |
| 367 | |
| 368 ER3(SSL_ERROR_UNSAFE_NEGOTIATION, (SSL_ERROR_BASE + 113), | |
| 369 "Peer attempted old style (potentially vulnerable) handshake.") | |
| 370 | |
| 371 ER3(SSL_ERROR_RX_UNEXPECTED_UNCOMPRESSED_RECORD, (SSL_ERROR_BASE + 114), | |
| 372 "SSL received an unexpected uncompressed record.") | |
| 373 | |
| 374 ER3(SSL_ERROR_WEAK_SERVER_EPHEMERAL_DH_KEY, (SSL_ERROR_BASE + 115), | |
| 375 "SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message.") | |
| 376 | |
| 377 ER3(SSL_ERROR_NEXT_PROTOCOL_DATA_INVALID, (SSL_ERROR_BASE + 116), | |
| 378 "SSL received invalid NPN extension data.") | |
| 379 | |
| 380 ER3(SSL_ERROR_FEATURE_NOT_SUPPORTED_FOR_SSL2, (SSL_ERROR_BASE + 117), | |
| 381 "SSL feature not supported for SSL 2.0 connections.") | |
| 382 | |
| 383 ER3(SSL_ERROR_FEATURE_NOT_SUPPORTED_FOR_SERVERS, (SSL_ERROR_BASE + 118), | |
| 384 "SSL feature not supported for servers.") | |
| 385 | |
| 386 ER3(SSL_ERROR_FEATURE_NOT_SUPPORTED_FOR_CLIENTS, (SSL_ERROR_BASE + 119), | |
| 387 "SSL feature not supported for clients.") | |
| 388 | |
| 389 ER3(SSL_ERROR_INVALID_VERSION_RANGE, (SSL_ERROR_BASE + 120), | |
| 390 "SSL version range is not valid.") | |
| 391 | |
| 392 ER3(SSL_ERROR_CIPHER_DISALLOWED_FOR_VERSION, (SSL_ERROR_BASE + 121), | |
| 393 "SSL peer selected a cipher suite disallowed for the selected protocol version.") | |
| 394 | |
| 395 ER3(SSL_ERROR_RX_MALFORMED_HELLO_VERIFY_REQUEST, (SSL_ERROR_BASE + 122), | |
| 396 "SSL received a malformed Hello Verify Request handshake message.") | |
| 397 | |
| 398 ER3(SSL_ERROR_RX_UNEXPECTED_HELLO_VERIFY_REQUEST, (SSL_ERROR_BASE + 123), | |
| 399 "SSL received an unexpected Hello Verify Request handshake message.") | |
| 400 | |
| 401 ER3(SSL_ERROR_FEATURE_NOT_SUPPORTED_FOR_VERSION, (SSL_ERROR_BASE + 124), | |
| 402 "SSL feature not supported for the protocol version.") | |
| 403 | |
| 404 ER3(SSL_ERROR_RX_UNEXPECTED_CERT_STATUS, (SSL_ERROR_BASE + 125), | |
| 405 "SSL received an unexpected Certificate Status handshake message.") | |
| 406 | |
| 407 ER3(SSL_ERROR_UNSUPPORTED_HASH_ALGORITHM, (SSL_ERROR_BASE + 126), | |
| 408 "Unsupported hash algorithm used by TLS peer.") | |
| 409 | |
| 410 ER3(SSL_ERROR_DIGEST_FAILURE, (SSL_ERROR_BASE + 127), | |
| 411 "Digest function failed.") | |
| 412 | |
| 413 ER3(SSL_ERROR_INCORRECT_SIGNATURE_ALGORITHM, (SSL_ERROR_BASE + 128), | |
| 414 "Incorrect signature algorithm specified in a digitally-signed element.") | |
| 415 | |
| 416 ER3(SSL_ERROR_NEXT_PROTOCOL_NO_CALLBACK, (SSL_ERROR_BASE + 129), | |
| 417 "The next protocol negotiation extension was enabled, but the callback was cleared prior to being needed.") | |
| 418 | |
| 419 ER3(SSL_ERROR_NEXT_PROTOCOL_NO_PROTOCOL, (SSL_ERROR_BASE + 130), | |
| 420 "The server supports no protocols that the client advertises in the ALPN extension.") | |
| 421 | |
| 422 ER3(SSL_ERROR_INAPPROPRIATE_FALLBACK_ALERT, (SSL_ERROR_BASE + 131), | |
| 423 "The server rejected the handshake because the client downgraded to a lower " | |
| 424 "TLS version than the server supports.") |
