| OLD | NEW |
|---|
| (Empty) |
| 1 /* This Source Code Form is subject to the terms of the Mozilla Public | |
| 2 * License, v. 2.0. If a copy of the MPL was not distributed with this | |
| 3 * file, You can obtain one at http://mozilla.org/MPL/2.0/. */ | |
| 4 | |
| 5 /* SSL-specific security error codes */ | |
| 6 /* caller must include "sslerr.h" */ | |
| 7 | |
| 8 ER3(SSL_ERROR_EXPORT_ONLY_SERVER, SSL_ERROR_BASE + 0, | |
| 9 "Unable to communicate securely. Peer does not support high-grade encryptio
n.") | |
| 10 | |
| 11 ER3(SSL_ERROR_US_ONLY_SERVER, SSL_ERROR_BASE + 1, | |
| 12 "Unable to communicate securely. Peer requires high-grade encryption which
is not supported.") | |
| 13 | |
| 14 ER3(SSL_ERROR_NO_CYPHER_OVERLAP, SSL_ERROR_BASE + 2, | |
| 15 "Cannot communicate securely with peer: no common encryption algorithm(s).") | |
| 16 | |
| 17 ER3(SSL_ERROR_NO_CERTIFICATE, SSL_ERROR_BASE + 3, | |
| 18 "Unable to find the certificate or key necessary for authentication.") | |
| 19 | |
| 20 ER3(SSL_ERROR_BAD_CERTIFICATE, SSL_ERROR_BASE + 4, | |
| 21 "Unable to communicate securely with peer: peers's certificate was rejected.
") | |
| 22 | |
| 23 ER3(SSL_ERROR_UNUSED_5, SSL_ERROR_BASE + 5, | |
| 24 "Unrecognized SSL error code.") | |
| 25 | |
| 26 ER3(SSL_ERROR_BAD_CLIENT, SSL_ERROR_BASE + 6, | |
| 27 "The server has encountered bad data from the client.") | |
| 28 | |
| 29 ER3(SSL_ERROR_BAD_SERVER, SSL_ERROR_BASE + 7, | |
| 30 "The client has encountered bad data from the server.") | |
| 31 | |
| 32 ER3(SSL_ERROR_UNSUPPORTED_CERTIFICATE_TYPE, SSL_ERROR_BASE + 8, | |
| 33 "Unsupported certificate type.") | |
| 34 | |
| 35 ER3(SSL_ERROR_UNSUPPORTED_VERSION, SSL_ERROR_BASE + 9, | |
| 36 "Peer using unsupported version of security protocol.") | |
| 37 | |
| 38 ER3(SSL_ERROR_UNUSED_10, SSL_ERROR_BASE + 10, | |
| 39 "Unrecognized SSL error code.") | |
| 40 | |
| 41 ER3(SSL_ERROR_WRONG_CERTIFICATE, SSL_ERROR_BASE + 11, | |
| 42 "Client authentication failed: private key in key database does not match pu
blic key in certificate database.") | |
| 43 | |
| 44 ER3(SSL_ERROR_BAD_CERT_DOMAIN, SSL_ERROR_BASE + 12, | |
| 45 "Unable to communicate securely with peer: requested domain name does not ma
tch the server's certificate.") | |
| 46 | |
| 47 ER3(SSL_ERROR_POST_WARNING, SSL_ERROR_BASE + 13, | |
| 48 "Unrecognized SSL error code.") | |
| 49 | |
| 50 ER3(SSL_ERROR_SSL2_DISABLED, (SSL_ERROR_BASE + 14), | |
| 51 "Peer only supports SSL version 2, which is locally disabled.") | |
| 52 | |
| 53 ER3(SSL_ERROR_BAD_MAC_READ, (SSL_ERROR_BASE + 15), | |
| 54 "SSL received a record with an incorrect Message Authentication Code.") | |
| 55 | |
| 56 ER3(SSL_ERROR_BAD_MAC_ALERT, (SSL_ERROR_BASE + 16), | |
| 57 "SSL peer reports incorrect Message Authentication Code.") | |
| 58 | |
| 59 ER3(SSL_ERROR_BAD_CERT_ALERT, (SSL_ERROR_BASE + 17), | |
| 60 "SSL peer cannot verify your certificate.") | |
| 61 | |
| 62 ER3(SSL_ERROR_REVOKED_CERT_ALERT, (SSL_ERROR_BASE + 18), | |
| 63 "SSL peer rejected your certificate as revoked.") | |
| 64 | |
| 65 ER3(SSL_ERROR_EXPIRED_CERT_ALERT, (SSL_ERROR_BASE + 19), | |
| 66 "SSL peer rejected your certificate as expired.") | |
| 67 | |
| 68 ER3(SSL_ERROR_SSL_DISABLED, (SSL_ERROR_BASE + 20), | |
| 69 "Cannot connect: SSL is disabled.") | |
| 70 | |
| 71 ER3(SSL_ERROR_FORTEZZA_PQG, (SSL_ERROR_BASE + 21), | |
| 72 "Cannot connect: SSL peer is in another FORTEZZA domain.") | |
| 73 | |
| 74 ER3(SSL_ERROR_UNKNOWN_CIPHER_SUITE, (SSL_ERROR_BASE + 22), | |
| 75 "An unknown SSL cipher suite has been requested.") | |
| 76 | |
| 77 ER3(SSL_ERROR_NO_CIPHERS_SUPPORTED, (SSL_ERROR_BASE + 23), | |
| 78 "No cipher suites are present and enabled in this program.") | |
| 79 | |
| 80 ER3(SSL_ERROR_BAD_BLOCK_PADDING, (SSL_ERROR_BASE + 24), | |
| 81 "SSL received a record with bad block padding.") | |
| 82 | |
| 83 ER3(SSL_ERROR_RX_RECORD_TOO_LONG, (SSL_ERROR_BASE + 25), | |
| 84 "SSL received a record that exceeded the maximum permissible length.") | |
| 85 | |
| 86 ER3(SSL_ERROR_TX_RECORD_TOO_LONG, (SSL_ERROR_BASE + 26), | |
| 87 "SSL attempted to send a record that exceeded the maximum permissible length
.") | |
| 88 | |
| 89 /* | |
| 90 * Received a malformed (too long or short or invalid content) SSL handshake. | |
| 91 */ | |
| 92 ER3(SSL_ERROR_RX_MALFORMED_HELLO_REQUEST, (SSL_ERROR_BASE + 27), | |
| 93 "SSL received a malformed Hello Request handshake message.") | |
| 94 | |
| 95 ER3(SSL_ERROR_RX_MALFORMED_CLIENT_HELLO, (SSL_ERROR_BASE + 28), | |
| 96 "SSL received a malformed Client Hello handshake message.") | |
| 97 | |
| 98 ER3(SSL_ERROR_RX_MALFORMED_SERVER_HELLO, (SSL_ERROR_BASE + 29), | |
| 99 "SSL received a malformed Server Hello handshake message.") | |
| 100 | |
| 101 ER3(SSL_ERROR_RX_MALFORMED_CERTIFICATE, (SSL_ERROR_BASE + 30), | |
| 102 "SSL received a malformed Certificate handshake message.") | |
| 103 | |
| 104 ER3(SSL_ERROR_RX_MALFORMED_SERVER_KEY_EXCH, (SSL_ERROR_BASE + 31), | |
| 105 "SSL received a malformed Server Key Exchange handshake message.") | |
| 106 | |
| 107 ER3(SSL_ERROR_RX_MALFORMED_CERT_REQUEST, (SSL_ERROR_BASE + 32), | |
| 108 "SSL received a malformed Certificate Request handshake message.") | |
| 109 | |
| 110 ER3(SSL_ERROR_RX_MALFORMED_HELLO_DONE, (SSL_ERROR_BASE + 33), | |
| 111 "SSL received a malformed Server Hello Done handshake message.") | |
| 112 | |
| 113 ER3(SSL_ERROR_RX_MALFORMED_CERT_VERIFY, (SSL_ERROR_BASE + 34), | |
| 114 "SSL received a malformed Certificate Verify handshake message.") | |
| 115 | |
| 116 ER3(SSL_ERROR_RX_MALFORMED_CLIENT_KEY_EXCH, (SSL_ERROR_BASE + 35), | |
| 117 "SSL received a malformed Client Key Exchange handshake message.") | |
| 118 | |
| 119 ER3(SSL_ERROR_RX_MALFORMED_FINISHED, (SSL_ERROR_BASE + 36), | |
| 120 "SSL received a malformed Finished handshake message.") | |
| 121 | |
| 122 /* | |
| 123 * Received a malformed (too long or short) SSL record. | |
| 124 */ | |
| 125 ER3(SSL_ERROR_RX_MALFORMED_CHANGE_CIPHER, (SSL_ERROR_BASE + 37), | |
| 126 "SSL received a malformed Change Cipher Spec record.") | |
| 127 | |
| 128 ER3(SSL_ERROR_RX_MALFORMED_ALERT, (SSL_ERROR_BASE + 38), | |
| 129 "SSL received a malformed Alert record.") | |
| 130 | |
| 131 ER3(SSL_ERROR_RX_MALFORMED_HANDSHAKE, (SSL_ERROR_BASE + 39), | |
| 132 "SSL received a malformed Handshake record.") | |
| 133 | |
| 134 ER3(SSL_ERROR_RX_MALFORMED_APPLICATION_DATA, (SSL_ERROR_BASE + 40), | |
| 135 "SSL received a malformed Application Data record.") | |
| 136 | |
| 137 /* | |
| 138 * Received an SSL handshake that was inappropriate for the state we're in. | |
| 139 * E.g. Server received message from server, or wrong state in state machine. | |
| 140 */ | |
| 141 ER3(SSL_ERROR_RX_UNEXPECTED_HELLO_REQUEST, (SSL_ERROR_BASE + 41), | |
| 142 "SSL received an unexpected Hello Request handshake message.") | |
| 143 | |
| 144 ER3(SSL_ERROR_RX_UNEXPECTED_CLIENT_HELLO, (SSL_ERROR_BASE + 42), | |
| 145 "SSL received an unexpected Client Hello handshake message.") | |
| 146 | |
| 147 ER3(SSL_ERROR_RX_UNEXPECTED_SERVER_HELLO, (SSL_ERROR_BASE + 43), | |
| 148 "SSL received an unexpected Server Hello handshake message.") | |
| 149 | |
| 150 ER3(SSL_ERROR_RX_UNEXPECTED_CERTIFICATE, (SSL_ERROR_BASE + 44), | |
| 151 "SSL received an unexpected Certificate handshake message.") | |
| 152 | |
| 153 ER3(SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH, (SSL_ERROR_BASE + 45), | |
| 154 "SSL received an unexpected Server Key Exchange handshake message.") | |
| 155 | |
| 156 ER3(SSL_ERROR_RX_UNEXPECTED_CERT_REQUEST, (SSL_ERROR_BASE + 46), | |
| 157 "SSL received an unexpected Certificate Request handshake message.") | |
| 158 | |
| 159 ER3(SSL_ERROR_RX_UNEXPECTED_HELLO_DONE, (SSL_ERROR_BASE + 47), | |
| 160 "SSL received an unexpected Server Hello Done handshake message.") | |
| 161 | |
| 162 ER3(SSL_ERROR_RX_UNEXPECTED_CERT_VERIFY, (SSL_ERROR_BASE + 48), | |
| 163 "SSL received an unexpected Certificate Verify handshake message.") | |
| 164 | |
| 165 ER3(SSL_ERROR_RX_UNEXPECTED_CLIENT_KEY_EXCH, (SSL_ERROR_BASE + 49), | |
| 166 "SSL received an unexpected Client Key Exchange handshake message.") | |
| 167 | |
| 168 ER3(SSL_ERROR_RX_UNEXPECTED_FINISHED, (SSL_ERROR_BASE + 50), | |
| 169 "SSL received an unexpected Finished handshake message.") | |
| 170 | |
| 171 /* | |
| 172 * Received an SSL record that was inappropriate for the state we're in. | |
| 173 */ | |
| 174 ER3(SSL_ERROR_RX_UNEXPECTED_CHANGE_CIPHER, (SSL_ERROR_BASE + 51), | |
| 175 "SSL received an unexpected Change Cipher Spec record.") | |
| 176 | |
| 177 ER3(SSL_ERROR_RX_UNEXPECTED_ALERT, (SSL_ERROR_BASE + 52), | |
| 178 "SSL received an unexpected Alert record.") | |
| 179 | |
| 180 ER3(SSL_ERROR_RX_UNEXPECTED_HANDSHAKE, (SSL_ERROR_BASE + 53), | |
| 181 "SSL received an unexpected Handshake record.") | |
| 182 | |
| 183 ER3(SSL_ERROR_RX_UNEXPECTED_APPLICATION_DATA, (SSL_ERROR_BASE + 54), | |
| 184 "SSL received an unexpected Application Data record.") | |
| 185 | |
| 186 /* | |
| 187 * Received record/message with unknown discriminant. | |
| 188 */ | |
| 189 ER3(SSL_ERROR_RX_UNKNOWN_RECORD_TYPE, (SSL_ERROR_BASE + 55), | |
| 190 "SSL received a record with an unknown content type.") | |
| 191 | |
| 192 ER3(SSL_ERROR_RX_UNKNOWN_HANDSHAKE, (SSL_ERROR_BASE + 56), | |
| 193 "SSL received a handshake message with an unknown message type.") | |
| 194 | |
| 195 ER3(SSL_ERROR_RX_UNKNOWN_ALERT, (SSL_ERROR_BASE + 57), | |
| 196 "SSL received an alert record with an unknown alert description.") | |
| 197 | |
| 198 /* | |
| 199 * Received an alert reporting what we did wrong. (more alerts above) | |
| 200 */ | |
| 201 ER3(SSL_ERROR_CLOSE_NOTIFY_ALERT, (SSL_ERROR_BASE + 58), | |
| 202 "SSL peer has closed this connection.") | |
| 203 | |
| 204 ER3(SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT, (SSL_ERROR_BASE + 59), | |
| 205 "SSL peer was not expecting a handshake message it received.") | |
| 206 | |
| 207 ER3(SSL_ERROR_DECOMPRESSION_FAILURE_ALERT, (SSL_ERROR_BASE + 60), | |
| 208 "SSL peer was unable to successfully decompress an SSL record it received.") | |
| 209 | |
| 210 ER3(SSL_ERROR_HANDSHAKE_FAILURE_ALERT, (SSL_ERROR_BASE + 61), | |
| 211 "SSL peer was unable to negotiate an acceptable set of security parameters."
) | |
| 212 | |
| 213 ER3(SSL_ERROR_ILLEGAL_PARAMETER_ALERT, (SSL_ERROR_BASE + 62), | |
| 214 "SSL peer rejected a handshake message for unacceptable content.") | |
| 215 | |
| 216 ER3(SSL_ERROR_UNSUPPORTED_CERT_ALERT, (SSL_ERROR_BASE + 63), | |
| 217 "SSL peer does not support certificates of the type it received.") | |
| 218 | |
| 219 ER3(SSL_ERROR_CERTIFICATE_UNKNOWN_ALERT, (SSL_ERROR_BASE + 64), | |
| 220 "SSL peer had some unspecified issue with the certificate it received.") | |
| 221 | |
| 222 ER3(SSL_ERROR_GENERATE_RANDOM_FAILURE, (SSL_ERROR_BASE + 65), | |
| 223 "SSL experienced a failure of its random number generator.") | |
| 224 | |
| 225 ER3(SSL_ERROR_SIGN_HASHES_FAILURE, (SSL_ERROR_BASE + 66), | |
| 226 "Unable to digitally sign data required to verify your certificate.") | |
| 227 | |
| 228 ER3(SSL_ERROR_EXTRACT_PUBLIC_KEY_FAILURE, (SSL_ERROR_BASE + 67), | |
| 229 "SSL was unable to extract the public key from the peer's certificate.") | |
| 230 | |
| 231 ER3(SSL_ERROR_SERVER_KEY_EXCHANGE_FAILURE, (SSL_ERROR_BASE + 68), | |
| 232 "Unspecified failure while processing SSL Server Key Exchange handshake.") | |
| 233 | |
| 234 ER3(SSL_ERROR_CLIENT_KEY_EXCHANGE_FAILURE, (SSL_ERROR_BASE + 69), | |
| 235 "Unspecified failure while processing SSL Client Key Exchange handshake.") | |
| 236 | |
| 237 ER3(SSL_ERROR_ENCRYPTION_FAILURE, (SSL_ERROR_BASE + 70), | |
| 238 "Bulk data encryption algorithm failed in selected cipher suite.") | |
| 239 | |
| 240 ER3(SSL_ERROR_DECRYPTION_FAILURE, (SSL_ERROR_BASE + 71), | |
| 241 "Bulk data decryption algorithm failed in selected cipher suite.") | |
| 242 | |
| 243 ER3(SSL_ERROR_SOCKET_WRITE_FAILURE, (SSL_ERROR_BASE + 72), | |
| 244 "Attempt to write encrypted data to underlying socket failed.") | |
| 245 | |
| 246 ER3(SSL_ERROR_MD5_DIGEST_FAILURE, (SSL_ERROR_BASE + 73), | |
| 247 "MD5 digest function failed.") | |
| 248 | |
| 249 ER3(SSL_ERROR_SHA_DIGEST_FAILURE, (SSL_ERROR_BASE + 74), | |
| 250 "SHA-1 digest function failed.") | |
| 251 | |
| 252 ER3(SSL_ERROR_MAC_COMPUTATION_FAILURE, (SSL_ERROR_BASE + 75), | |
| 253 "MAC computation failed.") | |
| 254 | |
| 255 ER3(SSL_ERROR_SYM_KEY_CONTEXT_FAILURE, (SSL_ERROR_BASE + 76), | |
| 256 "Failure to create Symmetric Key context.") | |
| 257 | |
| 258 ER3(SSL_ERROR_SYM_KEY_UNWRAP_FAILURE, (SSL_ERROR_BASE + 77), | |
| 259 "Failure to unwrap the Symmetric key in Client Key Exchange message.") | |
| 260 | |
| 261 ER3(SSL_ERROR_PUB_KEY_SIZE_LIMIT_EXCEEDED, (SSL_ERROR_BASE + 78), | |
| 262 "SSL Server attempted to use domestic-grade public key with export cipher su
ite.") | |
| 263 | |
| 264 ER3(SSL_ERROR_IV_PARAM_FAILURE, (SSL_ERROR_BASE + 79), | |
| 265 "PKCS11 code failed to translate an IV into a param.") | |
| 266 | |
| 267 ER3(SSL_ERROR_INIT_CIPHER_SUITE_FAILURE, (SSL_ERROR_BASE + 80), | |
| 268 "Failed to initialize the selected cipher suite.") | |
| 269 | |
| 270 ER3(SSL_ERROR_SESSION_KEY_GEN_FAILURE, (SSL_ERROR_BASE + 81), | |
| 271 "Client failed to generate session keys for SSL session.") | |
| 272 | |
| 273 ER3(SSL_ERROR_NO_SERVER_KEY_FOR_ALG, (SSL_ERROR_BASE + 82), | |
| 274 "Server has no key for the attempted key exchange algorithm.") | |
| 275 | |
| 276 ER3(SSL_ERROR_TOKEN_INSERTION_REMOVAL, (SSL_ERROR_BASE + 83), | |
| 277 "PKCS#11 token was inserted or removed while operation was in progress.") | |
| 278 | |
| 279 ER3(SSL_ERROR_TOKEN_SLOT_NOT_FOUND, (SSL_ERROR_BASE + 84), | |
| 280 "No PKCS#11 token could be found to do a required operation.") | |
| 281 | |
| 282 ER3(SSL_ERROR_NO_COMPRESSION_OVERLAP, (SSL_ERROR_BASE + 85), | |
| 283 "Cannot communicate securely with peer: no common compression algorithm(s)."
) | |
| 284 | |
| 285 ER3(SSL_ERROR_HANDSHAKE_NOT_COMPLETED, (SSL_ERROR_BASE + 86), | |
| 286 "Cannot perform the operation until the handshake is complete.") | |
| 287 | |
| 288 ER3(SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE, (SSL_ERROR_BASE + 87), | |
| 289 "Received incorrect handshakes hash values from peer.") | |
| 290 | |
| 291 ER3(SSL_ERROR_CERT_KEA_MISMATCH, (SSL_ERROR_BASE + 88), | |
| 292 "The certificate provided cannot be used with the selected key exchange algo
rithm.") | |
| 293 | |
| 294 ER3(SSL_ERROR_NO_TRUSTED_SSL_CLIENT_CA, (SSL_ERROR_BASE + 89), | |
| 295 "No certificate authority is trusted for SSL client authentication.") | |
| 296 | |
| 297 ER3(SSL_ERROR_SESSION_NOT_FOUND, (SSL_ERROR_BASE + 90), | |
| 298 "Client's SSL session ID not found in server's session cache.") | |
| 299 | |
| 300 ER3(SSL_ERROR_DECRYPTION_FAILED_ALERT, (SSL_ERROR_BASE + 91), | |
| 301 "Peer was unable to decrypt an SSL record it received.") | |
| 302 | |
| 303 ER3(SSL_ERROR_RECORD_OVERFLOW_ALERT, (SSL_ERROR_BASE + 92), | |
| 304 "Peer received an SSL record that was longer than is permitted.") | |
| 305 | |
| 306 ER3(SSL_ERROR_UNKNOWN_CA_ALERT, (SSL_ERROR_BASE + 93), | |
| 307 "Peer does not recognize and trust the CA that issued your certificate.") | |
| 308 | |
| 309 ER3(SSL_ERROR_ACCESS_DENIED_ALERT, (SSL_ERROR_BASE + 94), | |
| 310 "Peer received a valid certificate, but access was denied.") | |
| 311 | |
| 312 ER3(SSL_ERROR_DECODE_ERROR_ALERT, (SSL_ERROR_BASE + 95), | |
| 313 "Peer could not decode an SSL handshake message.") | |
| 314 | |
| 315 ER3(SSL_ERROR_DECRYPT_ERROR_ALERT, (SSL_ERROR_BASE + 96), | |
| 316 "Peer reports failure of signature verification or key exchange.") | |
| 317 | |
| 318 ER3(SSL_ERROR_EXPORT_RESTRICTION_ALERT, (SSL_ERROR_BASE + 97), | |
| 319 "Peer reports negotiation not in compliance with export regulations.") | |
| 320 | |
| 321 ER3(SSL_ERROR_PROTOCOL_VERSION_ALERT, (SSL_ERROR_BASE + 98), | |
| 322 "Peer reports incompatible or unsupported protocol version.") | |
| 323 | |
| 324 ER3(SSL_ERROR_INSUFFICIENT_SECURITY_ALERT, (SSL_ERROR_BASE + 99), | |
| 325 "Server requires ciphers more secure than those supported by client.") | |
| 326 | |
| 327 ER3(SSL_ERROR_INTERNAL_ERROR_ALERT, (SSL_ERROR_BASE + 100), | |
| 328 "Peer reports it experienced an internal error.") | |
| 329 | |
| 330 ER3(SSL_ERROR_USER_CANCELED_ALERT, (SSL_ERROR_BASE + 101), | |
| 331 "Peer user canceled handshake.") | |
| 332 | |
| 333 ER3(SSL_ERROR_NO_RENEGOTIATION_ALERT, (SSL_ERROR_BASE + 102), | |
| 334 "Peer does not permit renegotiation of SSL security parameters.") | |
| 335 | |
| 336 ER3(SSL_ERROR_SERVER_CACHE_NOT_CONFIGURED, (SSL_ERROR_BASE + 103), | |
| 337 "SSL server cache not configured and not disabled for this socket.") | |
| 338 | |
| 339 ER3(SSL_ERROR_UNSUPPORTED_EXTENSION_ALERT, (SSL_ERROR_BASE + 104), | |
| 340 "SSL peer does not support requested TLS hello extension.") | |
| 341 | |
| 342 ER3(SSL_ERROR_CERTIFICATE_UNOBTAINABLE_ALERT, (SSL_ERROR_BASE + 105), | |
| 343 "SSL peer could not obtain your certificate from the supplied URL.") | |
| 344 | |
| 345 ER3(SSL_ERROR_UNRECOGNIZED_NAME_ALERT, (SSL_ERROR_BASE + 106), | |
| 346 "SSL peer has no certificate for the requested DNS name.") | |
| 347 | |
| 348 ER3(SSL_ERROR_BAD_CERT_STATUS_RESPONSE_ALERT, (SSL_ERROR_BASE + 107), | |
| 349 "SSL peer was unable to get an OCSP response for its certificate.") | |
| 350 | |
| 351 ER3(SSL_ERROR_BAD_CERT_HASH_VALUE_ALERT, (SSL_ERROR_BASE + 108), | |
| 352 "SSL peer reported bad certificate hash value.") | |
| 353 | |
| 354 ER3(SSL_ERROR_RX_UNEXPECTED_NEW_SESSION_TICKET, (SSL_ERROR_BASE + 109), | |
| 355 "SSL received an unexpected New Session Ticket handshake message.") | |
| 356 | |
| 357 ER3(SSL_ERROR_RX_MALFORMED_NEW_SESSION_TICKET, (SSL_ERROR_BASE + 110), | |
| 358 "SSL received a malformed New Session Ticket handshake message.") | |
| 359 | |
| 360 ER3(SSL_ERROR_DECOMPRESSION_FAILURE, (SSL_ERROR_BASE + 111), | |
| 361 "SSL received a compressed record that could not be decompressed.") | |
| 362 | |
| 363 ER3(SSL_ERROR_RENEGOTIATION_NOT_ALLOWED, (SSL_ERROR_BASE + 112), | |
| 364 "Renegotiation is not allowed on this SSL socket.") | |
| 365 | |
| 366 ER3(SSL_ERROR_UNSAFE_NEGOTIATION, (SSL_ERROR_BASE + 113), | |
| 367 "Peer attempted old style (potentially vulnerable) handshake.") | |
| 368 | |
| 369 ER3(SSL_ERROR_RX_UNEXPECTED_UNCOMPRESSED_RECORD, (SSL_ERROR_BASE + 114), | |
| 370 "SSL received an unexpected uncompressed record.") | |
| 371 | |
| 372 ER3(SSL_ERROR_WEAK_SERVER_EPHEMERAL_DH_KEY, (SSL_ERROR_BASE + 115), | |
| 373 "SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange han
dshake message.") | |
| 374 | |
| 375 ER3(SSL_ERROR_NEXT_PROTOCOL_DATA_INVALID, (SSL_ERROR_BASE + 116), | |
| 376 "SSL received invalid NPN extension data.") | |
| 377 | |
| 378 ER3(SSL_ERROR_FEATURE_NOT_SUPPORTED_FOR_SSL2, (SSL_ERROR_BASE + 117), | |
| 379 "SSL feature not supported for SSL 2.0 connections.") | |
| 380 | |
| 381 ER3(SSL_ERROR_FEATURE_NOT_SUPPORTED_FOR_SERVERS, (SSL_ERROR_BASE + 118), | |
| 382 "SSL feature not supported for servers.") | |
| 383 | |
| 384 ER3(SSL_ERROR_FEATURE_NOT_SUPPORTED_FOR_CLIENTS, (SSL_ERROR_BASE + 119), | |
| 385 "SSL feature not supported for clients.") | |
| 386 | |
| 387 ER3(SSL_ERROR_INVALID_VERSION_RANGE, (SSL_ERROR_BASE + 120), | |
| 388 "SSL version range is not valid.") | |
| 389 | |
| 390 ER3(SSL_ERROR_CIPHER_DISALLOWED_FOR_VERSION, (SSL_ERROR_BASE + 121), | |
| 391 "SSL peer selected a cipher suite disallowed for the selected protocol versi
on.") | |
| 392 | |
| 393 ER3(SSL_ERROR_RX_MALFORMED_HELLO_VERIFY_REQUEST, (SSL_ERROR_BASE + 122), | |
| 394 "SSL received a malformed Hello Verify Request handshake message.") | |
| 395 | |
| 396 ER3(SSL_ERROR_RX_UNEXPECTED_HELLO_VERIFY_REQUEST, (SSL_ERROR_BASE + 123), | |
| 397 "SSL received an unexpected Hello Verify Request handshake message.") | |
| 398 | |
| 399 ER3(SSL_ERROR_FEATURE_NOT_SUPPORTED_FOR_VERSION, (SSL_ERROR_BASE + 124), | |
| 400 "SSL feature not supported for the protocol version.") | |
| 401 | |
| 402 ER3(SSL_ERROR_RX_UNEXPECTED_CERT_STATUS, (SSL_ERROR_BASE + 125), | |
| 403 "SSL received an unexpected Certificate Status handshake message.") | |
| 404 | |
| 405 ER3(SSL_ERROR_UNSUPPORTED_HASH_ALGORITHM, (SSL_ERROR_BASE + 126), | |
| 406 "Unsupported hash algorithm used by TLS peer.") | |
| 407 | |
| 408 ER3(SSL_ERROR_DIGEST_FAILURE, (SSL_ERROR_BASE + 127), | |
| 409 "Digest function failed.") | |
| 410 | |
| 411 ER3(SSL_ERROR_INCORRECT_SIGNATURE_ALGORITHM, (SSL_ERROR_BASE + 128), | |
| 412 "Incorrect signature algorithm specified in a digitally-signed element.") | |
| 413 | |
| 414 ER3(SSL_ERROR_NEXT_PROTOCOL_NO_CALLBACK, (SSL_ERROR_BASE + 129), | |
| 415 "The next protocol negotiation extension was enabled, but the callback was c
leared prior to being needed.") | |
| 416 | |
| 417 ER3(SSL_ERROR_NEXT_PROTOCOL_NO_PROTOCOL, (SSL_ERROR_BASE + 130), | |
| 418 "The server supports no protocols that the client advertises in the ALPN ext
ension.") | |
| 419 | |
| 420 ER3(SSL_ERROR_INAPPROPRIATE_FALLBACK_ALERT, (SSL_ERROR_BASE + 131), | |
| 421 "The server rejected the handshake because the client downgraded to a lower
" | |
| 422 "TLS version than the server supports.") | |
| 423 | |
| 424 ER3(SSL_ERROR_WEAK_SERVER_CERT_KEY, (SSL_ERROR_BASE + 132), | |
| 425 "The server certificate included a public key that was too weak.") | |
| 426 | |
| 427 ER3(SSL_ERROR_RX_SHORT_DTLS_READ, (SSL_ERROR_BASE + 133), | |
| 428 "Not enough room in buffer for DTLS record.") | |
| 429 | |
| 430 ER3(SSL_ERROR_NO_SUPPORTED_SIGNATURE_ALGORITHM, (SSL_ERROR_BASE + 134), | |
| 431 "No supported TLS signature algorithm was configured.") | |
| 432 | |
| 433 ER3(SSL_ERROR_UNSUPPORTED_SIGNATURE_ALGORITHM, (SSL_ERROR_BASE + 135), | |
| 434 "The peer used an unsupported combination of signature and hash algorithm.") | |
| 435 | |
| 436 ER3(SSL_ERROR_MISSING_EXTENDED_MASTER_SECRET, (SSL_ERROR_BASE + 136), | |
| 437 "The peer tried to resume without a correct extended_master_secret extension
") | |
| 438 | |
| 439 ER3(SSL_ERROR_UNEXPECTED_EXTENDED_MASTER_SECRET, (SSL_ERROR_BASE + 137), | |
| 440 "The peer tried to resume with an unexpected extended_master_secret extensio
n") | |
| 441 | |
| 442 ER3(SSL_ERROR_RX_MALFORMED_KEY_SHARE, (SSL_ERROR_BASE + 138), | |
| 443 "SSL received a malformed Key Share extension.") | |
| 444 | |
| 445 ER3(SSL_ERROR_MISSING_KEY_SHARE, (SSL_ERROR_BASE + 139), | |
| 446 "SSL expected a Key Share extension.") | |
| 447 | |
| 448 ER3(SSL_ERROR_RX_MALFORMED_ECDHE_KEY_SHARE, (SSL_ERROR_BASE + 140), | |
| 449 "SSL received a malformed ECDHE key share handshake extension.") | |
| 450 | |
| 451 ER3(SSL_ERROR_RX_MALFORMED_DHE_KEY_SHARE, (SSL_ERROR_BASE + 141), | |
| 452 "SSL received a malformed DHE key share handshake extension.") | |
| 453 | |
| 454 ER3(SSL_ERROR_RX_UNEXPECTED_ENCRYPTED_EXTENSIONS, (SSL_ERROR_BASE + 142), | |
| 455 "SSL received an unexpected Encrypted Extensions handshake message.") | |
| 456 | |
| 457 ER3(SSL_ERROR_MISSING_EXTENSION_ALERT, (SSL_ERROR_BASE + 143), | |
| 458 "SSL received a missing_extenson alert.") | |
| 459 | |
| 460 ER3(SSL_ERROR_KEY_EXCHANGE_FAILURE, (SSL_ERROR_BASE + 144), | |
| 461 "SSL had an error performing key exchange.") | |
| 462 | |
| 463 ER3(SSL_ERROR_EXTENSION_DISALLOWED_FOR_VERSION, (SSL_ERROR_BASE + 145), | |
| 464 "SSL received an extension that is not permitted for this version.") | |
| 465 | |
| 466 ER3(SSL_ERROR_RX_MALFORMED_ENCRYPTED_EXTENSIONS, (SSL_ERROR_BASE + 146), | |
| 467 "SSL received a malformed Encrypted Extensions handshake message.") | |
| 468 | |
| 469 ER3(SSL_ERROR_BAD_CHANNEL_ID_DATA, (SSL_ERROR_BASE + 147), | |
| 470 "SSL received a malformed TLS Channel ID extension.") | |
| 471 | |
| 472 ER3(SSL_ERROR_INVALID_CHANNEL_ID_KEY, (SSL_ERROR_BASE + 148), | |
| 473 "The application provided an invalid TLS Channel ID key.") | |
| 474 | |
| 475 ER3(SSL_ERROR_GET_CHANNEL_ID_FAILED, (SSL_ERROR_BASE + 149), | |
| 476 "The application could not get a TLS Channel ID.") | |
| OLD | NEW |
|---|
Chromium Code Reviews
Issue 1882433002:
Removing NSS files and USE_OPENSSL flag (Closed)
Base URL: https://chromium.googlesource.com/chromium/src.git@master