1.1 --- /dev/null Thu Jan 01 00:00:00 1970 +0000
1.2 +++ b/security/nss/lib/util/SECerrs.h Wed Dec 31 06:09:35 2014 +0100
1.3 @@ -0,0 +1,553 @@
1.4 +/* This Source Code Form is subject to the terms of the Mozilla Public
1.5 + * License, v. 2.0. If a copy of the MPL was not distributed with this
1.6 + * file, You can obtain one at http://mozilla.org/MPL/2.0/. */
1.7 +
1.8 +/* General security error codes */
1.9 +/* Caller must #include "secerr.h" */
1.10 +
1.11 +ER3(SEC_ERROR_IO, SEC_ERROR_BASE + 0,
1.12 +"An I/O error occurred during security authorization.")
1.13 +
1.14 +ER3(SEC_ERROR_LIBRARY_FAILURE, SEC_ERROR_BASE + 1,
1.15 +"security library failure.")
1.16 +
1.17 +ER3(SEC_ERROR_BAD_DATA, SEC_ERROR_BASE + 2,
1.18 +"security library: received bad data.")
1.19 +
1.20 +ER3(SEC_ERROR_OUTPUT_LEN, SEC_ERROR_BASE + 3,
1.21 +"security library: output length error.")
1.22 +
1.23 +ER3(SEC_ERROR_INPUT_LEN, SEC_ERROR_BASE + 4,
1.24 +"security library has experienced an input length error.")
1.25 +
1.26 +ER3(SEC_ERROR_INVALID_ARGS, SEC_ERROR_BASE + 5,
1.27 +"security library: invalid arguments.")
1.28 +
1.29 +ER3(SEC_ERROR_INVALID_ALGORITHM, SEC_ERROR_BASE + 6,
1.30 +"security library: invalid algorithm.")
1.31 +
1.32 +ER3(SEC_ERROR_INVALID_AVA, SEC_ERROR_BASE + 7,
1.33 +"security library: invalid AVA.")
1.34 +
1.35 +ER3(SEC_ERROR_INVALID_TIME, SEC_ERROR_BASE + 8,
1.36 +"Improperly formatted time string.")
1.37 +
1.38 +ER3(SEC_ERROR_BAD_DER, SEC_ERROR_BASE + 9,
1.39 +"security library: improperly formatted DER-encoded message.")
1.40 +
1.41 +ER3(SEC_ERROR_BAD_SIGNATURE, SEC_ERROR_BASE + 10,
1.42 +"Peer's certificate has an invalid signature.")
1.43 +
1.44 +ER3(SEC_ERROR_EXPIRED_CERTIFICATE, SEC_ERROR_BASE + 11,
1.45 +"Peer's Certificate has expired.")
1.46 +
1.47 +ER3(SEC_ERROR_REVOKED_CERTIFICATE, SEC_ERROR_BASE + 12,
1.48 +"Peer's Certificate has been revoked.")
1.49 +
1.50 +ER3(SEC_ERROR_UNKNOWN_ISSUER, SEC_ERROR_BASE + 13,
1.51 +"Peer's Certificate issuer is not recognized.")
1.52 +
1.53 +ER3(SEC_ERROR_BAD_KEY, SEC_ERROR_BASE + 14,
1.54 +"Peer's public key is invalid.")
1.55 +
1.56 +ER3(SEC_ERROR_BAD_PASSWORD, SEC_ERROR_BASE + 15,
1.57 +"The security password entered is incorrect.")
1.58 +
1.59 +ER3(SEC_ERROR_RETRY_PASSWORD, SEC_ERROR_BASE + 16,
1.60 +"New password entered incorrectly. Please try again.")
1.61 +
1.62 +ER3(SEC_ERROR_NO_NODELOCK, SEC_ERROR_BASE + 17,
1.63 +"security library: no nodelock.")
1.64 +
1.65 +ER3(SEC_ERROR_BAD_DATABASE, SEC_ERROR_BASE + 18,
1.66 +"security library: bad database.")
1.67 +
1.68 +ER3(SEC_ERROR_NO_MEMORY, SEC_ERROR_BASE + 19,
1.69 +"security library: memory allocation failure.")
1.70 +
1.71 +ER3(SEC_ERROR_UNTRUSTED_ISSUER, SEC_ERROR_BASE + 20,
1.72 +"Peer's certificate issuer has been marked as not trusted by the user.")
1.73 +
1.74 +ER3(SEC_ERROR_UNTRUSTED_CERT, SEC_ERROR_BASE + 21,
1.75 +"Peer's certificate has been marked as not trusted by the user.")
1.76 +
1.77 +ER3(SEC_ERROR_DUPLICATE_CERT, (SEC_ERROR_BASE + 22),
1.78 +"Certificate already exists in your database.")
1.79 +
1.80 +ER3(SEC_ERROR_DUPLICATE_CERT_NAME, (SEC_ERROR_BASE + 23),
1.81 +"Downloaded certificate's name duplicates one already in your database.")
1.82 +
1.83 +ER3(SEC_ERROR_ADDING_CERT, (SEC_ERROR_BASE + 24),
1.84 +"Error adding certificate to database.")
1.85 +
1.86 +ER3(SEC_ERROR_FILING_KEY, (SEC_ERROR_BASE + 25),
1.87 +"Error refiling the key for this certificate.")
1.88 +
1.89 +ER3(SEC_ERROR_NO_KEY, (SEC_ERROR_BASE + 26),
1.90 +"The private key for this certificate cannot be found in key database")
1.91 +
1.92 +ER3(SEC_ERROR_CERT_VALID, (SEC_ERROR_BASE + 27),
1.93 +"This certificate is valid.")
1.94 +
1.95 +ER3(SEC_ERROR_CERT_NOT_VALID, (SEC_ERROR_BASE + 28),
1.96 +"This certificate is not valid.")
1.97 +
1.98 +ER3(SEC_ERROR_CERT_NO_RESPONSE, (SEC_ERROR_BASE + 29),
1.99 +"Cert Library: No Response")
1.100 +
1.101 +ER3(SEC_ERROR_EXPIRED_ISSUER_CERTIFICATE, (SEC_ERROR_BASE + 30),
1.102 +"The certificate issuer's certificate has expired. Check your system date and time.")
1.103 +
1.104 +ER3(SEC_ERROR_CRL_EXPIRED, (SEC_ERROR_BASE + 31),
1.105 +"The CRL for the certificate's issuer has expired. Update it or check your system date and time.")
1.106 +
1.107 +ER3(SEC_ERROR_CRL_BAD_SIGNATURE, (SEC_ERROR_BASE + 32),
1.108 +"The CRL for the certificate's issuer has an invalid signature.")
1.109 +
1.110 +ER3(SEC_ERROR_CRL_INVALID, (SEC_ERROR_BASE + 33),
1.111 +"New CRL has an invalid format.")
1.112 +
1.113 +ER3(SEC_ERROR_EXTENSION_VALUE_INVALID, (SEC_ERROR_BASE + 34),
1.114 +"Certificate extension value is invalid.")
1.115 +
1.116 +ER3(SEC_ERROR_EXTENSION_NOT_FOUND, (SEC_ERROR_BASE + 35),
1.117 +"Certificate extension not found.")
1.118 +
1.119 +ER3(SEC_ERROR_CA_CERT_INVALID, (SEC_ERROR_BASE + 36),
1.120 +"Issuer certificate is invalid.")
1.121 +
1.122 +ER3(SEC_ERROR_PATH_LEN_CONSTRAINT_INVALID, (SEC_ERROR_BASE + 37),
1.123 +"Certificate path length constraint is invalid.")
1.124 +
1.125 +ER3(SEC_ERROR_CERT_USAGES_INVALID, (SEC_ERROR_BASE + 38),
1.126 +"Certificate usages field is invalid.")
1.127 +
1.128 +ER3(SEC_INTERNAL_ONLY, (SEC_ERROR_BASE + 39),
1.129 +"**Internal ONLY module**")
1.130 +
1.131 +ER3(SEC_ERROR_INVALID_KEY, (SEC_ERROR_BASE + 40),
1.132 +"The key does not support the requested operation.")
1.133 +
1.134 +ER3(SEC_ERROR_UNKNOWN_CRITICAL_EXTENSION, (SEC_ERROR_BASE + 41),
1.135 +"Certificate contains unknown critical extension.")
1.136 +
1.137 +ER3(SEC_ERROR_OLD_CRL, (SEC_ERROR_BASE + 42),
1.138 +"New CRL is not later than the current one.")
1.139 +
1.140 +ER3(SEC_ERROR_NO_EMAIL_CERT, (SEC_ERROR_BASE + 43),
1.141 +"Not encrypted or signed: you do not yet have an email certificate.")
1.142 +
1.143 +ER3(SEC_ERROR_NO_RECIPIENT_CERTS_QUERY, (SEC_ERROR_BASE + 44),
1.144 +"Not encrypted: you do not have certificates for each of the recipients.")
1.145 +
1.146 +ER3(SEC_ERROR_NOT_A_RECIPIENT, (SEC_ERROR_BASE + 45),
1.147 +"Cannot decrypt: you are not a recipient, or matching certificate and \
1.148 +private key not found.")
1.149 +
1.150 +ER3(SEC_ERROR_PKCS7_KEYALG_MISMATCH, (SEC_ERROR_BASE + 46),
1.151 +"Cannot decrypt: key encryption algorithm does not match your certificate.")
1.152 +
1.153 +ER3(SEC_ERROR_PKCS7_BAD_SIGNATURE, (SEC_ERROR_BASE + 47),
1.154 +"Signature verification failed: no signer found, too many signers found, \
1.155 +or improper or corrupted data.")
1.156 +
1.157 +ER3(SEC_ERROR_UNSUPPORTED_KEYALG, (SEC_ERROR_BASE + 48),
1.158 +"Unsupported or unknown key algorithm.")
1.159 +
1.160 +ER3(SEC_ERROR_DECRYPTION_DISALLOWED, (SEC_ERROR_BASE + 49),
1.161 +"Cannot decrypt: encrypted using a disallowed algorithm or key size.")
1.162 +
1.163 +
1.164 +/* Fortezza Alerts */
1.165 +ER3(XP_SEC_FORTEZZA_BAD_CARD, (SEC_ERROR_BASE + 50),
1.166 +"Fortezza card has not been properly initialized. \
1.167 +Please remove it and return it to your issuer.")
1.168 +
1.169 +ER3(XP_SEC_FORTEZZA_NO_CARD, (SEC_ERROR_BASE + 51),
1.170 +"No Fortezza cards Found")
1.171 +
1.172 +ER3(XP_SEC_FORTEZZA_NONE_SELECTED, (SEC_ERROR_BASE + 52),
1.173 +"No Fortezza card selected")
1.174 +
1.175 +ER3(XP_SEC_FORTEZZA_MORE_INFO, (SEC_ERROR_BASE + 53),
1.176 +"Please select a personality to get more info on")
1.177 +
1.178 +ER3(XP_SEC_FORTEZZA_PERSON_NOT_FOUND, (SEC_ERROR_BASE + 54),
1.179 +"Personality not found")
1.180 +
1.181 +ER3(XP_SEC_FORTEZZA_NO_MORE_INFO, (SEC_ERROR_BASE + 55),
1.182 +"No more information on that Personality")
1.183 +
1.184 +ER3(XP_SEC_FORTEZZA_BAD_PIN, (SEC_ERROR_BASE + 56),
1.185 +"Invalid Pin")
1.186 +
1.187 +ER3(XP_SEC_FORTEZZA_PERSON_ERROR, (SEC_ERROR_BASE + 57),
1.188 +"Couldn't initialize Fortezza personalities.")
1.189 +/* end fortezza alerts. */
1.190 +
1.191 +ER3(SEC_ERROR_NO_KRL, (SEC_ERROR_BASE + 58),
1.192 +"No KRL for this site's certificate has been found.")
1.193 +
1.194 +ER3(SEC_ERROR_KRL_EXPIRED, (SEC_ERROR_BASE + 59),
1.195 +"The KRL for this site's certificate has expired.")
1.196 +
1.197 +ER3(SEC_ERROR_KRL_BAD_SIGNATURE, (SEC_ERROR_BASE + 60),
1.198 +"The KRL for this site's certificate has an invalid signature.")
1.199 +
1.200 +ER3(SEC_ERROR_REVOKED_KEY, (SEC_ERROR_BASE + 61),
1.201 +"The key for this site's certificate has been revoked.")
1.202 +
1.203 +ER3(SEC_ERROR_KRL_INVALID, (SEC_ERROR_BASE + 62),
1.204 +"New KRL has an invalid format.")
1.205 +
1.206 +ER3(SEC_ERROR_NEED_RANDOM, (SEC_ERROR_BASE + 63),
1.207 +"security library: need random data.")
1.208 +
1.209 +ER3(SEC_ERROR_NO_MODULE, (SEC_ERROR_BASE + 64),
1.210 +"security library: no security module can perform the requested operation.")
1.211 +
1.212 +ER3(SEC_ERROR_NO_TOKEN, (SEC_ERROR_BASE + 65),
1.213 +"The security card or token does not exist, needs to be initialized, or has been removed.")
1.214 +
1.215 +ER3(SEC_ERROR_READ_ONLY, (SEC_ERROR_BASE + 66),
1.216 +"security library: read-only database.")
1.217 +
1.218 +ER3(SEC_ERROR_NO_SLOT_SELECTED, (SEC_ERROR_BASE + 67),
1.219 +"No slot or token was selected.")
1.220 +
1.221 +ER3(SEC_ERROR_CERT_NICKNAME_COLLISION, (SEC_ERROR_BASE + 68),
1.222 +"A certificate with the same nickname already exists.")
1.223 +
1.224 +ER3(SEC_ERROR_KEY_NICKNAME_COLLISION, (SEC_ERROR_BASE + 69),
1.225 +"A key with the same nickname already exists.")
1.226 +
1.227 +ER3(SEC_ERROR_SAFE_NOT_CREATED, (SEC_ERROR_BASE + 70),
1.228 +"error while creating safe object")
1.229 +
1.230 +ER3(SEC_ERROR_BAGGAGE_NOT_CREATED, (SEC_ERROR_BASE + 71),
1.231 +"error while creating baggage object")
1.232 +
1.233 +ER3(XP_JAVA_REMOVE_PRINCIPAL_ERROR, (SEC_ERROR_BASE + 72),
1.234 +"Couldn't remove the principal")
1.235 +
1.236 +ER3(XP_JAVA_DELETE_PRIVILEGE_ERROR, (SEC_ERROR_BASE + 73),
1.237 +"Couldn't delete the privilege")
1.238 +
1.239 +ER3(XP_JAVA_CERT_NOT_EXISTS_ERROR, (SEC_ERROR_BASE + 74),
1.240 +"This principal doesn't have a certificate")
1.241 +
1.242 +ER3(SEC_ERROR_BAD_EXPORT_ALGORITHM, (SEC_ERROR_BASE + 75),
1.243 +"Required algorithm is not allowed.")
1.244 +
1.245 +ER3(SEC_ERROR_EXPORTING_CERTIFICATES, (SEC_ERROR_BASE + 76),
1.246 +"Error attempting to export certificates.")
1.247 +
1.248 +ER3(SEC_ERROR_IMPORTING_CERTIFICATES, (SEC_ERROR_BASE + 77),
1.249 +"Error attempting to import certificates.")
1.250 +
1.251 +ER3(SEC_ERROR_PKCS12_DECODING_PFX, (SEC_ERROR_BASE + 78),
1.252 +"Unable to import. Decoding error. File not valid.")
1.253 +
1.254 +ER3(SEC_ERROR_PKCS12_INVALID_MAC, (SEC_ERROR_BASE + 79),
1.255 +"Unable to import. Invalid MAC. Incorrect password or corrupt file.")
1.256 +
1.257 +ER3(SEC_ERROR_PKCS12_UNSUPPORTED_MAC_ALGORITHM, (SEC_ERROR_BASE + 80),
1.258 +"Unable to import. MAC algorithm not supported.")
1.259 +
1.260 +ER3(SEC_ERROR_PKCS12_UNSUPPORTED_TRANSPORT_MODE,(SEC_ERROR_BASE + 81),
1.261 +"Unable to import. Only password integrity and privacy modes supported.")
1.262 +
1.263 +ER3(SEC_ERROR_PKCS12_CORRUPT_PFX_STRUCTURE, (SEC_ERROR_BASE + 82),
1.264 +"Unable to import. File structure is corrupt.")
1.265 +
1.266 +ER3(SEC_ERROR_PKCS12_UNSUPPORTED_PBE_ALGORITHM, (SEC_ERROR_BASE + 83),
1.267 +"Unable to import. Encryption algorithm not supported.")
1.268 +
1.269 +ER3(SEC_ERROR_PKCS12_UNSUPPORTED_VERSION, (SEC_ERROR_BASE + 84),
1.270 +"Unable to import. File version not supported.")
1.271 +
1.272 +ER3(SEC_ERROR_PKCS12_PRIVACY_PASSWORD_INCORRECT,(SEC_ERROR_BASE + 85),
1.273 +"Unable to import. Incorrect privacy password.")
1.274 +
1.275 +ER3(SEC_ERROR_PKCS12_CERT_COLLISION, (SEC_ERROR_BASE + 86),
1.276 +"Unable to import. Same nickname already exists in database.")
1.277 +
1.278 +ER3(SEC_ERROR_USER_CANCELLED, (SEC_ERROR_BASE + 87),
1.279 +"The user pressed cancel.")
1.280 +
1.281 +ER3(SEC_ERROR_PKCS12_DUPLICATE_DATA, (SEC_ERROR_BASE + 88),
1.282 +"Not imported, already in database.")
1.283 +
1.284 +ER3(SEC_ERROR_MESSAGE_SEND_ABORTED, (SEC_ERROR_BASE + 89),
1.285 +"Message not sent.")
1.286 +
1.287 +ER3(SEC_ERROR_INADEQUATE_KEY_USAGE, (SEC_ERROR_BASE + 90),
1.288 +"Certificate key usage inadequate for attempted operation.")
1.289 +
1.290 +ER3(SEC_ERROR_INADEQUATE_CERT_TYPE, (SEC_ERROR_BASE + 91),
1.291 +"Certificate type not approved for application.")
1.292 +
1.293 +ER3(SEC_ERROR_CERT_ADDR_MISMATCH, (SEC_ERROR_BASE + 92),
1.294 +"Address in signing certificate does not match address in message headers.")
1.295 +
1.296 +ER3(SEC_ERROR_PKCS12_UNABLE_TO_IMPORT_KEY, (SEC_ERROR_BASE + 93),
1.297 +"Unable to import. Error attempting to import private key.")
1.298 +
1.299 +ER3(SEC_ERROR_PKCS12_IMPORTING_CERT_CHAIN, (SEC_ERROR_BASE + 94),
1.300 +"Unable to import. Error attempting to import certificate chain.")
1.301 +
1.302 +ER3(SEC_ERROR_PKCS12_UNABLE_TO_LOCATE_OBJECT_BY_NAME, (SEC_ERROR_BASE + 95),
1.303 +"Unable to export. Unable to locate certificate or key by nickname.")
1.304 +
1.305 +ER3(SEC_ERROR_PKCS12_UNABLE_TO_EXPORT_KEY, (SEC_ERROR_BASE + 96),
1.306 +"Unable to export. Private Key could not be located and exported.")
1.307 +
1.308 +ER3(SEC_ERROR_PKCS12_UNABLE_TO_WRITE, (SEC_ERROR_BASE + 97),
1.309 +"Unable to export. Unable to write the export file.")
1.310 +
1.311 +ER3(SEC_ERROR_PKCS12_UNABLE_TO_READ, (SEC_ERROR_BASE + 98),
1.312 +"Unable to import. Unable to read the import file.")
1.313 +
1.314 +ER3(SEC_ERROR_PKCS12_KEY_DATABASE_NOT_INITIALIZED, (SEC_ERROR_BASE + 99),
1.315 +"Unable to export. Key database corrupt or deleted.")
1.316 +
1.317 +ER3(SEC_ERROR_KEYGEN_FAIL, (SEC_ERROR_BASE + 100),
1.318 +"Unable to generate public/private key pair.")
1.319 +
1.320 +ER3(SEC_ERROR_INVALID_PASSWORD, (SEC_ERROR_BASE + 101),
1.321 +"Password entered is invalid. Please pick a different one.")
1.322 +
1.323 +ER3(SEC_ERROR_RETRY_OLD_PASSWORD, (SEC_ERROR_BASE + 102),
1.324 +"Old password entered incorrectly. Please try again.")
1.325 +
1.326 +ER3(SEC_ERROR_BAD_NICKNAME, (SEC_ERROR_BASE + 103),
1.327 +"Certificate nickname already in use.")
1.328 +
1.329 +ER3(SEC_ERROR_NOT_FORTEZZA_ISSUER, (SEC_ERROR_BASE + 104),
1.330 +"Peer FORTEZZA chain has a non-FORTEZZA Certificate.")
1.331 +
1.332 +ER3(SEC_ERROR_CANNOT_MOVE_SENSITIVE_KEY, (SEC_ERROR_BASE + 105),
1.333 +"A sensitive key cannot be moved to the slot where it is needed.")
1.334 +
1.335 +ER3(SEC_ERROR_JS_INVALID_MODULE_NAME, (SEC_ERROR_BASE + 106),
1.336 +"Invalid module name.")
1.337 +
1.338 +ER3(SEC_ERROR_JS_INVALID_DLL, (SEC_ERROR_BASE + 107),
1.339 +"Invalid module path/filename")
1.340 +
1.341 +ER3(SEC_ERROR_JS_ADD_MOD_FAILURE, (SEC_ERROR_BASE + 108),
1.342 +"Unable to add module")
1.343 +
1.344 +ER3(SEC_ERROR_JS_DEL_MOD_FAILURE, (SEC_ERROR_BASE + 109),
1.345 +"Unable to delete module")
1.346 +
1.347 +ER3(SEC_ERROR_OLD_KRL, (SEC_ERROR_BASE + 110),
1.348 +"New KRL is not later than the current one.")
1.349 +
1.350 +ER3(SEC_ERROR_CKL_CONFLICT, (SEC_ERROR_BASE + 111),
1.351 +"New CKL has different issuer than current CKL. Delete current CKL.")
1.352 +
1.353 +ER3(SEC_ERROR_CERT_NOT_IN_NAME_SPACE, (SEC_ERROR_BASE + 112),
1.354 +"The Certifying Authority for this certificate is not permitted to issue a \
1.355 +certificate with this name.")
1.356 +
1.357 +ER3(SEC_ERROR_KRL_NOT_YET_VALID, (SEC_ERROR_BASE + 113),
1.358 +"The key revocation list for this certificate is not yet valid.")
1.359 +
1.360 +ER3(SEC_ERROR_CRL_NOT_YET_VALID, (SEC_ERROR_BASE + 114),
1.361 +"The certificate revocation list for this certificate is not yet valid.")
1.362 +
1.363 +ER3(SEC_ERROR_UNKNOWN_CERT, (SEC_ERROR_BASE + 115),
1.364 +"The requested certificate could not be found.")
1.365 +
1.366 +ER3(SEC_ERROR_UNKNOWN_SIGNER, (SEC_ERROR_BASE + 116),
1.367 +"The signer's certificate could not be found.")
1.368 +
1.369 +ER3(SEC_ERROR_CERT_BAD_ACCESS_LOCATION, (SEC_ERROR_BASE + 117),
1.370 +"The location for the certificate status server has invalid format.")
1.371 +
1.372 +ER3(SEC_ERROR_OCSP_UNKNOWN_RESPONSE_TYPE, (SEC_ERROR_BASE + 118),
1.373 +"The OCSP response cannot be fully decoded; it is of an unknown type.")
1.374 +
1.375 +ER3(SEC_ERROR_OCSP_BAD_HTTP_RESPONSE, (SEC_ERROR_BASE + 119),
1.376 +"The OCSP server returned unexpected/invalid HTTP data.")
1.377 +
1.378 +ER3(SEC_ERROR_OCSP_MALFORMED_REQUEST, (SEC_ERROR_BASE + 120),
1.379 +"The OCSP server found the request to be corrupted or improperly formed.")
1.380 +
1.381 +ER3(SEC_ERROR_OCSP_SERVER_ERROR, (SEC_ERROR_BASE + 121),
1.382 +"The OCSP server experienced an internal error.")
1.383 +
1.384 +ER3(SEC_ERROR_OCSP_TRY_SERVER_LATER, (SEC_ERROR_BASE + 122),
1.385 +"The OCSP server suggests trying again later.")
1.386 +
1.387 +ER3(SEC_ERROR_OCSP_REQUEST_NEEDS_SIG, (SEC_ERROR_BASE + 123),
1.388 +"The OCSP server requires a signature on this request.")
1.389 +
1.390 +ER3(SEC_ERROR_OCSP_UNAUTHORIZED_REQUEST, (SEC_ERROR_BASE + 124),
1.391 +"The OCSP server has refused this request as unauthorized.")
1.392 +
1.393 +ER3(SEC_ERROR_OCSP_UNKNOWN_RESPONSE_STATUS, (SEC_ERROR_BASE + 125),
1.394 +"The OCSP server returned an unrecognizable status.")
1.395 +
1.396 +ER3(SEC_ERROR_OCSP_UNKNOWN_CERT, (SEC_ERROR_BASE + 126),
1.397 +"The OCSP server has no status for the certificate.")
1.398 +
1.399 +ER3(SEC_ERROR_OCSP_NOT_ENABLED, (SEC_ERROR_BASE + 127),
1.400 +"You must enable OCSP before performing this operation.")
1.401 +
1.402 +ER3(SEC_ERROR_OCSP_NO_DEFAULT_RESPONDER, (SEC_ERROR_BASE + 128),
1.403 +"You must set the OCSP default responder before performing this operation.")
1.404 +
1.405 +ER3(SEC_ERROR_OCSP_MALFORMED_RESPONSE, (SEC_ERROR_BASE + 129),
1.406 +"The response from the OCSP server was corrupted or improperly formed.")
1.407 +
1.408 +ER3(SEC_ERROR_OCSP_UNAUTHORIZED_RESPONSE, (SEC_ERROR_BASE + 130),
1.409 +"The signer of the OCSP response is not authorized to give status for \
1.410 +this certificate.")
1.411 +
1.412 +ER3(SEC_ERROR_OCSP_FUTURE_RESPONSE, (SEC_ERROR_BASE + 131),
1.413 +"The OCSP response is not yet valid (contains a date in the future).")
1.414 +
1.415 +ER3(SEC_ERROR_OCSP_OLD_RESPONSE, (SEC_ERROR_BASE + 132),
1.416 +"The OCSP response contains out-of-date information.")
1.417 +
1.418 +ER3(SEC_ERROR_DIGEST_NOT_FOUND, (SEC_ERROR_BASE + 133),
1.419 +"The CMS or PKCS #7 Digest was not found in signed message.")
1.420 +
1.421 +ER3(SEC_ERROR_UNSUPPORTED_MESSAGE_TYPE, (SEC_ERROR_BASE + 134),
1.422 +"The CMS or PKCS #7 Message type is unsupported.")
1.423 +
1.424 +ER3(SEC_ERROR_MODULE_STUCK, (SEC_ERROR_BASE + 135),
1.425 +"PKCS #11 module could not be removed because it is still in use.")
1.426 +
1.427 +ER3(SEC_ERROR_BAD_TEMPLATE, (SEC_ERROR_BASE + 136),
1.428 +"Could not decode ASN.1 data. Specified template was invalid.")
1.429 +
1.430 +ER3(SEC_ERROR_CRL_NOT_FOUND, (SEC_ERROR_BASE + 137),
1.431 +"No matching CRL was found.")
1.432 +
1.433 +ER3(SEC_ERROR_REUSED_ISSUER_AND_SERIAL, (SEC_ERROR_BASE + 138),
1.434 +"You are attempting to import a cert with the same issuer/serial as \
1.435 +an existing cert, but that is not the same cert.")
1.436 +
1.437 +ER3(SEC_ERROR_BUSY, (SEC_ERROR_BASE + 139),
1.438 +"NSS could not shutdown. Objects are still in use.")
1.439 +
1.440 +ER3(SEC_ERROR_EXTRA_INPUT, (SEC_ERROR_BASE + 140),
1.441 +"DER-encoded message contained extra unused data.")
1.442 +
1.443 +ER3(SEC_ERROR_UNSUPPORTED_ELLIPTIC_CURVE, (SEC_ERROR_BASE + 141),
1.444 +"Unsupported elliptic curve.")
1.445 +
1.446 +ER3(SEC_ERROR_UNSUPPORTED_EC_POINT_FORM, (SEC_ERROR_BASE + 142),
1.447 +"Unsupported elliptic curve point form.")
1.448 +
1.449 +ER3(SEC_ERROR_UNRECOGNIZED_OID, (SEC_ERROR_BASE + 143),
1.450 +"Unrecognized Object Identifier.")
1.451 +
1.452 +ER3(SEC_ERROR_OCSP_INVALID_SIGNING_CERT, (SEC_ERROR_BASE + 144),
1.453 +"Invalid OCSP signing certificate in OCSP response.")
1.454 +
1.455 +ER3(SEC_ERROR_REVOKED_CERTIFICATE_CRL, (SEC_ERROR_BASE + 145),
1.456 +"Certificate is revoked in issuer's certificate revocation list.")
1.457 +
1.458 +ER3(SEC_ERROR_REVOKED_CERTIFICATE_OCSP, (SEC_ERROR_BASE + 146),
1.459 +"Issuer's OCSP responder reports certificate is revoked.")
1.460 +
1.461 +ER3(SEC_ERROR_CRL_INVALID_VERSION, (SEC_ERROR_BASE + 147),
1.462 +"Issuer's Certificate Revocation List has an unknown version number.")
1.463 +
1.464 +ER3(SEC_ERROR_CRL_V1_CRITICAL_EXTENSION, (SEC_ERROR_BASE + 148),
1.465 +"Issuer's V1 Certificate Revocation List has a critical extension.")
1.466 +
1.467 +ER3(SEC_ERROR_CRL_UNKNOWN_CRITICAL_EXTENSION, (SEC_ERROR_BASE + 149),
1.468 +"Issuer's V2 Certificate Revocation List has an unknown critical extension.")
1.469 +
1.470 +ER3(SEC_ERROR_UNKNOWN_OBJECT_TYPE, (SEC_ERROR_BASE + 150),
1.471 +"Unknown object type specified.")
1.472 +
1.473 +ER3(SEC_ERROR_INCOMPATIBLE_PKCS11, (SEC_ERROR_BASE + 151),
1.474 +"PKCS #11 driver violates the spec in an incompatible way.")
1.475 +
1.476 +ER3(SEC_ERROR_NO_EVENT, (SEC_ERROR_BASE + 152),
1.477 +"No new slot event is available at this time.")
1.478 +
1.479 +ER3(SEC_ERROR_CRL_ALREADY_EXISTS, (SEC_ERROR_BASE + 153),
1.480 +"CRL already exists.")
1.481 +
1.482 +ER3(SEC_ERROR_NOT_INITIALIZED, (SEC_ERROR_BASE + 154),
1.483 +"NSS is not initialized.")
1.484 +
1.485 +ER3(SEC_ERROR_TOKEN_NOT_LOGGED_IN, (SEC_ERROR_BASE + 155),
1.486 +"The operation failed because the PKCS#11 token is not logged in.")
1.487 +
1.488 +ER3(SEC_ERROR_OCSP_RESPONDER_CERT_INVALID, (SEC_ERROR_BASE + 156),
1.489 +"Configured OCSP responder's certificate is invalid.")
1.490 +
1.491 +ER3(SEC_ERROR_OCSP_BAD_SIGNATURE, (SEC_ERROR_BASE + 157),
1.492 +"OCSP response has an invalid signature.")
1.493 +
1.494 +ER3(SEC_ERROR_OUT_OF_SEARCH_LIMITS, (SEC_ERROR_BASE + 158),
1.495 +"Cert validation search is out of search limits")
1.496 +
1.497 +ER3(SEC_ERROR_INVALID_POLICY_MAPPING, (SEC_ERROR_BASE + 159),
1.498 +"Policy mapping contains anypolicy")
1.499 +
1.500 +ER3(SEC_ERROR_POLICY_VALIDATION_FAILED, (SEC_ERROR_BASE + 160),
1.501 +"Cert chain fails policy validation")
1.502 +
1.503 +ER3(SEC_ERROR_UNKNOWN_AIA_LOCATION_TYPE, (SEC_ERROR_BASE + 161),
1.504 +"Unknown location type in cert AIA extension")
1.505 +
1.506 +ER3(SEC_ERROR_BAD_HTTP_RESPONSE, (SEC_ERROR_BASE + 162),
1.507 +"Server returned bad HTTP response")
1.508 +
1.509 +ER3(SEC_ERROR_BAD_LDAP_RESPONSE, (SEC_ERROR_BASE + 163),
1.510 +"Server returned bad LDAP response")
1.511 +
1.512 +ER3(SEC_ERROR_FAILED_TO_ENCODE_DATA, (SEC_ERROR_BASE + 164),
1.513 +"Failed to encode data with ASN1 encoder")
1.514 +
1.515 +ER3(SEC_ERROR_BAD_INFO_ACCESS_LOCATION, (SEC_ERROR_BASE + 165),
1.516 +"Bad information access location in cert extension")
1.517 +
1.518 +ER3(SEC_ERROR_LIBPKIX_INTERNAL, (SEC_ERROR_BASE + 166),
1.519 +"Libpkix internal error occurred during cert validation.")
1.520 +
1.521 +ER3(SEC_ERROR_PKCS11_GENERAL_ERROR, (SEC_ERROR_BASE + 167),
1.522 +"A PKCS #11 module returned CKR_GENERAL_ERROR, indicating that an unrecoverable error has occurred.")
1.523 +
1.524 +ER3(SEC_ERROR_PKCS11_FUNCTION_FAILED, (SEC_ERROR_BASE + 168),
1.525 +"A PKCS #11 module returned CKR_FUNCTION_FAILED, indicating that the requested function could not be performed. Trying the same operation again might succeed.")
1.526 +
1.527 +ER3(SEC_ERROR_PKCS11_DEVICE_ERROR, (SEC_ERROR_BASE + 169),
1.528 +"A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.")
1.529 +
1.530 +ER3(SEC_ERROR_BAD_INFO_ACCESS_METHOD, (SEC_ERROR_BASE + 170),
1.531 +"Unknown information access method in certificate extension.")
1.532 +
1.533 +ER3(SEC_ERROR_CRL_IMPORT_FAILED, (SEC_ERROR_BASE + 171),
1.534 +"Error attempting to import a CRL.")
1.535 +
1.536 +ER3(SEC_ERROR_EXPIRED_PASSWORD, (SEC_ERROR_BASE + 172),
1.537 +"The password expired.")
1.538 +
1.539 +ER3(SEC_ERROR_LOCKED_PASSWORD, (SEC_ERROR_BASE + 173),
1.540 +"The password is locked.")
1.541 +
1.542 +ER3(SEC_ERROR_UNKNOWN_PKCS11_ERROR, (SEC_ERROR_BASE + 174),
1.543 +"Unknown PKCS #11 error.")
1.544 +
1.545 +ER3(SEC_ERROR_BAD_CRL_DP_URL, (SEC_ERROR_BASE + 175),
1.546 +"Invalid or unsupported URL in CRL distribution point name.")
1.547 +
1.548 +ER3(SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED, (SEC_ERROR_BASE + 176),
1.549 +"The certificate was signed using a signature algorithm that is disabled because it is not secure.")
1.550 +
1.551 +ER3(SEC_ERROR_LEGACY_DATABASE, (SEC_ERROR_BASE + 177),
1.552 +"The certificate/key database is in an old, unsupported format.")
1.553 +
1.554 +ER3(SEC_ERROR_APPLICATION_CALLBACK_ERROR, (SEC_ERROR_BASE + 178),
1.555 +"The certificate was rejected by extra checks in the application.")
1.556 +
