/* This Source Code Form is subject to the terms of the Mozilla Public * License, v. 2.0. If a copy of the MPL was not distributed with this * file, You can obtain one at http://mozilla.org/MPL/2.0/. */ /* General security error codes */ /* Caller must #include "secerr.h" */ ER3(SEC_ERROR_IO, SEC_ERROR_BASE + 0, "An I/O error occurred during security authorization.") ER3(SEC_ERROR_LIBRARY_FAILURE, SEC_ERROR_BASE + 1, "security library failure.") ER3(SEC_ERROR_BAD_DATA, SEC_ERROR_BASE + 2, "security library: received bad data.") ER3(SEC_ERROR_OUTPUT_LEN, SEC_ERROR_BASE + 3, "security library: output length error.") ER3(SEC_ERROR_INPUT_LEN, SEC_ERROR_BASE + 4, "security library has experienced an input length error.") ER3(SEC_ERROR_INVALID_ARGS, SEC_ERROR_BASE + 5, "security library: invalid arguments.") ER3(SEC_ERROR_INVALID_ALGORITHM, SEC_ERROR_BASE + 6, "security library: invalid algorithm.") ER3(SEC_ERROR_INVALID_AVA, SEC_ERROR_BASE + 7, "security library: invalid AVA.") ER3(SEC_ERROR_INVALID_TIME, SEC_ERROR_BASE + 8, "Improperly formatted time string.") ER3(SEC_ERROR_BAD_DER, SEC_ERROR_BASE + 9, "security library: improperly formatted DER-encoded message.") ER3(SEC_ERROR_BAD_SIGNATURE, SEC_ERROR_BASE + 10, "Peer's certificate has an invalid signature.") ER3(SEC_ERROR_EXPIRED_CERTIFICATE, SEC_ERROR_BASE + 11, "Peer's Certificate has expired.") ER3(SEC_ERROR_REVOKED_CERTIFICATE, SEC_ERROR_BASE + 12, "Peer's Certificate has been revoked.") ER3(SEC_ERROR_UNKNOWN_ISSUER, SEC_ERROR_BASE + 13, "Peer's Certificate issuer is not recognized.") ER3(SEC_ERROR_BAD_KEY, SEC_ERROR_BASE + 14, "Peer's public key is invalid.") ER3(SEC_ERROR_BAD_PASSWORD, SEC_ERROR_BASE + 15, "The security password entered is incorrect.") ER3(SEC_ERROR_RETRY_PASSWORD, SEC_ERROR_BASE + 16, "New password entered incorrectly. Please try again.") ER3(SEC_ERROR_NO_NODELOCK, SEC_ERROR_BASE + 17, "security library: no nodelock.") ER3(SEC_ERROR_BAD_DATABASE, SEC_ERROR_BASE + 18, "security library: bad database.") ER3(SEC_ERROR_NO_MEMORY, SEC_ERROR_BASE + 19, "security library: memory allocation failure.") ER3(SEC_ERROR_UNTRUSTED_ISSUER, SEC_ERROR_BASE + 20, "Peer's certificate issuer has been marked as not trusted by the user.") ER3(SEC_ERROR_UNTRUSTED_CERT, SEC_ERROR_BASE + 21, "Peer's certificate has been marked as not trusted by the user.") ER3(SEC_ERROR_DUPLICATE_CERT, (SEC_ERROR_BASE + 22), "Certificate already exists in your database.") ER3(SEC_ERROR_DUPLICATE_CERT_NAME, (SEC_ERROR_BASE + 23), "Downloaded certificate's name duplicates one already in your database.") ER3(SEC_ERROR_ADDING_CERT, (SEC_ERROR_BASE + 24), "Error adding certificate to database.") ER3(SEC_ERROR_FILING_KEY, (SEC_ERROR_BASE + 25), "Error refiling the key for this certificate.") ER3(SEC_ERROR_NO_KEY, (SEC_ERROR_BASE + 26), "The private key for this certificate cannot be found in key database") ER3(SEC_ERROR_CERT_VALID, (SEC_ERROR_BASE + 27), "This certificate is valid.") ER3(SEC_ERROR_CERT_NOT_VALID, (SEC_ERROR_BASE + 28), "This certificate is not valid.") ER3(SEC_ERROR_CERT_NO_RESPONSE, (SEC_ERROR_BASE + 29), "Cert Library: No Response") ER3(SEC_ERROR_EXPIRED_ISSUER_CERTIFICATE, (SEC_ERROR_BASE + 30), "The certificate issuer's certificate has expired. Check your system date and time.") ER3(SEC_ERROR_CRL_EXPIRED, (SEC_ERROR_BASE + 31), "The CRL for the certificate's issuer has expired. Update it or check your system date and time.") ER3(SEC_ERROR_CRL_BAD_SIGNATURE, (SEC_ERROR_BASE + 32), "The CRL for the certificate's issuer has an invalid signature.") ER3(SEC_ERROR_CRL_INVALID, (SEC_ERROR_BASE + 33), "New CRL has an invalid format.") ER3(SEC_ERROR_EXTENSION_VALUE_INVALID, (SEC_ERROR_BASE + 34), "Certificate extension value is invalid.") ER3(SEC_ERROR_EXTENSION_NOT_FOUND, (SEC_ERROR_BASE + 35), "Certificate extension not found.") ER3(SEC_ERROR_CA_CERT_INVALID, (SEC_ERROR_BASE + 36), "Issuer certificate is invalid.") ER3(SEC_ERROR_PATH_LEN_CONSTRAINT_INVALID, (SEC_ERROR_BASE + 37), "Certificate path length constraint is invalid.") ER3(SEC_ERROR_CERT_USAGES_INVALID, (SEC_ERROR_BASE + 38), "Certificate usages field is invalid.") ER3(SEC_INTERNAL_ONLY, (SEC_ERROR_BASE + 39), "**Internal ONLY module**") ER3(SEC_ERROR_INVALID_KEY, (SEC_ERROR_BASE + 40), "The key does not support the requested operation.") ER3(SEC_ERROR_UNKNOWN_CRITICAL_EXTENSION, (SEC_ERROR_BASE + 41), "Certificate contains unknown critical extension.") ER3(SEC_ERROR_OLD_CRL, (SEC_ERROR_BASE + 42), "New CRL is not later than the current one.") ER3(SEC_ERROR_NO_EMAIL_CERT, (SEC_ERROR_BASE + 43), "Not encrypted or signed: you do not yet have an email certificate.") ER3(SEC_ERROR_NO_RECIPIENT_CERTS_QUERY, (SEC_ERROR_BASE + 44), "Not encrypted: you do not have certificates for each of the recipients.") ER3(SEC_ERROR_NOT_A_RECIPIENT, (SEC_ERROR_BASE + 45), "Cannot decrypt: you are not a recipient, or matching certificate and \ private key not found.") ER3(SEC_ERROR_PKCS7_KEYALG_MISMATCH, (SEC_ERROR_BASE + 46), "Cannot decrypt: key encryption algorithm does not match your certificate.") ER3(SEC_ERROR_PKCS7_BAD_SIGNATURE, (SEC_ERROR_BASE + 47), "Signature verification failed: no signer found, too many signers found, \ or improper or corrupted data.") ER3(SEC_ERROR_UNSUPPORTED_KEYALG, (SEC_ERROR_BASE + 48), "Unsupported or unknown key algorithm.") ER3(SEC_ERROR_DECRYPTION_DISALLOWED, (SEC_ERROR_BASE + 49), "Cannot decrypt: encrypted using a disallowed algorithm or key size.") /* Fortezza Alerts */ ER3(XP_SEC_FORTEZZA_BAD_CARD, (SEC_ERROR_BASE + 50), "Fortezza card has not been properly initialized. \ Please remove it and return it to your issuer.") ER3(XP_SEC_FORTEZZA_NO_CARD, (SEC_ERROR_BASE + 51), "No Fortezza cards Found") ER3(XP_SEC_FORTEZZA_NONE_SELECTED, (SEC_ERROR_BASE + 52), "No Fortezza card selected") ER3(XP_SEC_FORTEZZA_MORE_INFO, (SEC_ERROR_BASE + 53), "Please select a personality to get more info on") ER3(XP_SEC_FORTEZZA_PERSON_NOT_FOUND, (SEC_ERROR_BASE + 54), "Personality not found") ER3(XP_SEC_FORTEZZA_NO_MORE_INFO, (SEC_ERROR_BASE + 55), "No more information on that Personality") ER3(XP_SEC_FORTEZZA_BAD_PIN, (SEC_ERROR_BASE + 56), "Invalid Pin") ER3(XP_SEC_FORTEZZA_PERSON_ERROR, (SEC_ERROR_BASE + 57), "Couldn't initialize Fortezza personalities.") /* end fortezza alerts. */ ER3(SEC_ERROR_NO_KRL, (SEC_ERROR_BASE + 58), "No KRL for this site's certificate has been found.") ER3(SEC_ERROR_KRL_EXPIRED, (SEC_ERROR_BASE + 59), "The KRL for this site's certificate has expired.") ER3(SEC_ERROR_KRL_BAD_SIGNATURE, (SEC_ERROR_BASE + 60), "The KRL for this site's certificate has an invalid signature.") ER3(SEC_ERROR_REVOKED_KEY, (SEC_ERROR_BASE + 61), "The key for this site's certificate has been revoked.") ER3(SEC_ERROR_KRL_INVALID, (SEC_ERROR_BASE + 62), "New KRL has an invalid format.") ER3(SEC_ERROR_NEED_RANDOM, (SEC_ERROR_BASE + 63), "security library: need random data.") ER3(SEC_ERROR_NO_MODULE, (SEC_ERROR_BASE + 64), "security library: no security module can perform the requested operation.") ER3(SEC_ERROR_NO_TOKEN, (SEC_ERROR_BASE + 65), "The security card or token does not exist, needs to be initialized, or has been removed.") ER3(SEC_ERROR_READ_ONLY, (SEC_ERROR_BASE + 66), "security library: read-only database.") ER3(SEC_ERROR_NO_SLOT_SELECTED, (SEC_ERROR_BASE + 67), "No slot or token was selected.") ER3(SEC_ERROR_CERT_NICKNAME_COLLISION, (SEC_ERROR_BASE + 68), "A certificate with the same nickname already exists.") ER3(SEC_ERROR_KEY_NICKNAME_COLLISION, (SEC_ERROR_BASE + 69), "A key with the same nickname already exists.") ER3(SEC_ERROR_SAFE_NOT_CREATED, (SEC_ERROR_BASE + 70), "error while creating safe object") ER3(SEC_ERROR_BAGGAGE_NOT_CREATED, (SEC_ERROR_BASE + 71), "error while creating baggage object") ER3(XP_JAVA_REMOVE_PRINCIPAL_ERROR, (SEC_ERROR_BASE + 72), "Couldn't remove the principal") ER3(XP_JAVA_DELETE_PRIVILEGE_ERROR, (SEC_ERROR_BASE + 73), "Couldn't delete the privilege") ER3(XP_JAVA_CERT_NOT_EXISTS_ERROR, (SEC_ERROR_BASE + 74), "This principal doesn't have a certificate") ER3(SEC_ERROR_BAD_EXPORT_ALGORITHM, (SEC_ERROR_BASE + 75), "Required algorithm is not allowed.") ER3(SEC_ERROR_EXPORTING_CERTIFICATES, (SEC_ERROR_BASE + 76), "Error attempting to export certificates.") ER3(SEC_ERROR_IMPORTING_CERTIFICATES, (SEC_ERROR_BASE + 77), "Error attempting to import certificates.") ER3(SEC_ERROR_PKCS12_DECODING_PFX, (SEC_ERROR_BASE + 78), "Unable to import. Decoding error. File not valid.") ER3(SEC_ERROR_PKCS12_INVALID_MAC, (SEC_ERROR_BASE + 79), "Unable to import. Invalid MAC. Incorrect password or corrupt file.") ER3(SEC_ERROR_PKCS12_UNSUPPORTED_MAC_ALGORITHM, (SEC_ERROR_BASE + 80), "Unable to import. MAC algorithm not supported.") ER3(SEC_ERROR_PKCS12_UNSUPPORTED_TRANSPORT_MODE,(SEC_ERROR_BASE + 81), "Unable to import. Only password integrity and privacy modes supported.") ER3(SEC_ERROR_PKCS12_CORRUPT_PFX_STRUCTURE, (SEC_ERROR_BASE + 82), "Unable to import. File structure is corrupt.") ER3(SEC_ERROR_PKCS12_UNSUPPORTED_PBE_ALGORITHM, (SEC_ERROR_BASE + 83), "Unable to import. Encryption algorithm not supported.") ER3(SEC_ERROR_PKCS12_UNSUPPORTED_VERSION, (SEC_ERROR_BASE + 84), "Unable to import. File version not supported.") ER3(SEC_ERROR_PKCS12_PRIVACY_PASSWORD_INCORRECT,(SEC_ERROR_BASE + 85), "Unable to import. Incorrect privacy password.") ER3(SEC_ERROR_PKCS12_CERT_COLLISION, (SEC_ERROR_BASE + 86), "Unable to import. Same nickname already exists in database.") ER3(SEC_ERROR_USER_CANCELLED, (SEC_ERROR_BASE + 87), "The user pressed cancel.") ER3(SEC_ERROR_PKCS12_DUPLICATE_DATA, (SEC_ERROR_BASE + 88), "Not imported, already in database.") ER3(SEC_ERROR_MESSAGE_SEND_ABORTED, (SEC_ERROR_BASE + 89), "Message not sent.") ER3(SEC_ERROR_INADEQUATE_KEY_USAGE, (SEC_ERROR_BASE + 90), "Certificate key usage inadequate for attempted operation.") ER3(SEC_ERROR_INADEQUATE_CERT_TYPE, (SEC_ERROR_BASE + 91), "Certificate type not approved for application.") ER3(SEC_ERROR_CERT_ADDR_MISMATCH, (SEC_ERROR_BASE + 92), "Address in signing certificate does not match address in message headers.") ER3(SEC_ERROR_PKCS12_UNABLE_TO_IMPORT_KEY, (SEC_ERROR_BASE + 93), "Unable to import. Error attempting to import private key.") ER3(SEC_ERROR_PKCS12_IMPORTING_CERT_CHAIN, (SEC_ERROR_BASE + 94), "Unable to import. Error attempting to import certificate chain.") ER3(SEC_ERROR_PKCS12_UNABLE_TO_LOCATE_OBJECT_BY_NAME, (SEC_ERROR_BASE + 95), "Unable to export. Unable to locate certificate or key by nickname.") ER3(SEC_ERROR_PKCS12_UNABLE_TO_EXPORT_KEY, (SEC_ERROR_BASE + 96), "Unable to export. Private Key could not be located and exported.") ER3(SEC_ERROR_PKCS12_UNABLE_TO_WRITE, (SEC_ERROR_BASE + 97), "Unable to export. Unable to write the export file.") ER3(SEC_ERROR_PKCS12_UNABLE_TO_READ, (SEC_ERROR_BASE + 98), "Unable to import. Unable to read the import file.") ER3(SEC_ERROR_PKCS12_KEY_DATABASE_NOT_INITIALIZED, (SEC_ERROR_BASE + 99), "Unable to export. Key database corrupt or deleted.") ER3(SEC_ERROR_KEYGEN_FAIL, (SEC_ERROR_BASE + 100), "Unable to generate public/private key pair.") ER3(SEC_ERROR_INVALID_PASSWORD, (SEC_ERROR_BASE + 101), "Password entered is invalid. Please pick a different one.") ER3(SEC_ERROR_RETRY_OLD_PASSWORD, (SEC_ERROR_BASE + 102), "Old password entered incorrectly. Please try again.") ER3(SEC_ERROR_BAD_NICKNAME, (SEC_ERROR_BASE + 103), "Certificate nickname already in use.") ER3(SEC_ERROR_NOT_FORTEZZA_ISSUER, (SEC_ERROR_BASE + 104), "Peer FORTEZZA chain has a non-FORTEZZA Certificate.") ER3(SEC_ERROR_CANNOT_MOVE_SENSITIVE_KEY, (SEC_ERROR_BASE + 105), "A sensitive key cannot be moved to the slot where it is needed.") ER3(SEC_ERROR_JS_INVALID_MODULE_NAME, (SEC_ERROR_BASE + 106), "Invalid module name.") ER3(SEC_ERROR_JS_INVALID_DLL, (SEC_ERROR_BASE + 107), "Invalid module path/filename") ER3(SEC_ERROR_JS_ADD_MOD_FAILURE, (SEC_ERROR_BASE + 108), "Unable to add module") ER3(SEC_ERROR_JS_DEL_MOD_FAILURE, (SEC_ERROR_BASE + 109), "Unable to delete module") ER3(SEC_ERROR_OLD_KRL, (SEC_ERROR_BASE + 110), "New KRL is not later than the current one.") ER3(SEC_ERROR_CKL_CONFLICT, (SEC_ERROR_BASE + 111), "New CKL has different issuer than current CKL. Delete current CKL.") ER3(SEC_ERROR_CERT_NOT_IN_NAME_SPACE, (SEC_ERROR_BASE + 112), "The Certifying Authority for this certificate is not permitted to issue a \ certificate with this name.") ER3(SEC_ERROR_KRL_NOT_YET_VALID, (SEC_ERROR_BASE + 113), "The key revocation list for this certificate is not yet valid.") ER3(SEC_ERROR_CRL_NOT_YET_VALID, (SEC_ERROR_BASE + 114), "The certificate revocation list for this certificate is not yet valid.") ER3(SEC_ERROR_UNKNOWN_CERT, (SEC_ERROR_BASE + 115), "The requested certificate could not be found.") ER3(SEC_ERROR_UNKNOWN_SIGNER, (SEC_ERROR_BASE + 116), "The signer's certificate could not be found.") ER3(SEC_ERROR_CERT_BAD_ACCESS_LOCATION, (SEC_ERROR_BASE + 117), "The location for the certificate status server has invalid format.") ER3(SEC_ERROR_OCSP_UNKNOWN_RESPONSE_TYPE, (SEC_ERROR_BASE + 118), "The OCSP response cannot be fully decoded; it is of an unknown type.") ER3(SEC_ERROR_OCSP_BAD_HTTP_RESPONSE, (SEC_ERROR_BASE + 119), "The OCSP server returned unexpected/invalid HTTP data.") ER3(SEC_ERROR_OCSP_MALFORMED_REQUEST, (SEC_ERROR_BASE + 120), "The OCSP server found the request to be corrupted or improperly formed.") ER3(SEC_ERROR_OCSP_SERVER_ERROR, (SEC_ERROR_BASE + 121), "The OCSP server experienced an internal error.") ER3(SEC_ERROR_OCSP_TRY_SERVER_LATER, (SEC_ERROR_BASE + 122), "The OCSP server suggests trying again later.") ER3(SEC_ERROR_OCSP_REQUEST_NEEDS_SIG, (SEC_ERROR_BASE + 123), "The OCSP server requires a signature on this request.") ER3(SEC_ERROR_OCSP_UNAUTHORIZED_REQUEST, (SEC_ERROR_BASE + 124), "The OCSP server has refused this request as unauthorized.") ER3(SEC_ERROR_OCSP_UNKNOWN_RESPONSE_STATUS, (SEC_ERROR_BASE + 125), "The OCSP server returned an unrecognizable status.") ER3(SEC_ERROR_OCSP_UNKNOWN_CERT, (SEC_ERROR_BASE + 126), "The OCSP server has no status for the certificate.") ER3(SEC_ERROR_OCSP_NOT_ENABLED, (SEC_ERROR_BASE + 127), "You must enable OCSP before performing this operation.") ER3(SEC_ERROR_OCSP_NO_DEFAULT_RESPONDER, (SEC_ERROR_BASE + 128), "You must set the OCSP default responder before performing this operation.") ER3(SEC_ERROR_OCSP_MALFORMED_RESPONSE, (SEC_ERROR_BASE + 129), "The response from the OCSP server was corrupted or improperly formed.") ER3(SEC_ERROR_OCSP_UNAUTHORIZED_RESPONSE, (SEC_ERROR_BASE + 130), "The signer of the OCSP response is not authorized to give status for \ this certificate.") ER3(SEC_ERROR_OCSP_FUTURE_RESPONSE, (SEC_ERROR_BASE + 131), "The OCSP response is not yet valid (contains a date in the future).") ER3(SEC_ERROR_OCSP_OLD_RESPONSE, (SEC_ERROR_BASE + 132), "The OCSP response contains out-of-date information.") ER3(SEC_ERROR_DIGEST_NOT_FOUND, (SEC_ERROR_BASE + 133), "The CMS or PKCS #7 Digest was not found in signed message.") ER3(SEC_ERROR_UNSUPPORTED_MESSAGE_TYPE, (SEC_ERROR_BASE + 134), "The CMS or PKCS #7 Message type is unsupported.") ER3(SEC_ERROR_MODULE_STUCK, (SEC_ERROR_BASE + 135), "PKCS #11 module could not be removed because it is still in use.") ER3(SEC_ERROR_BAD_TEMPLATE, (SEC_ERROR_BASE + 136), "Could not decode ASN.1 data. Specified template was invalid.") ER3(SEC_ERROR_CRL_NOT_FOUND, (SEC_ERROR_BASE + 137), "No matching CRL was found.") ER3(SEC_ERROR_REUSED_ISSUER_AND_SERIAL, (SEC_ERROR_BASE + 138), "You are attempting to import a cert with the same issuer/serial as \ an existing cert, but that is not the same cert.") ER3(SEC_ERROR_BUSY, (SEC_ERROR_BASE + 139), "NSS could not shutdown. Objects are still in use.") ER3(SEC_ERROR_EXTRA_INPUT, (SEC_ERROR_BASE + 140), "DER-encoded message contained extra unused data.") ER3(SEC_ERROR_UNSUPPORTED_ELLIPTIC_CURVE, (SEC_ERROR_BASE + 141), "Unsupported elliptic curve.") ER3(SEC_ERROR_UNSUPPORTED_EC_POINT_FORM, (SEC_ERROR_BASE + 142), "Unsupported elliptic curve point form.") ER3(SEC_ERROR_UNRECOGNIZED_OID, (SEC_ERROR_BASE + 143), "Unrecognized Object Identifier.") ER3(SEC_ERROR_OCSP_INVALID_SIGNING_CERT, (SEC_ERROR_BASE + 144), "Invalid OCSP signing certificate in OCSP response.") ER3(SEC_ERROR_REVOKED_CERTIFICATE_CRL, (SEC_ERROR_BASE + 145), "Certificate is revoked in issuer's certificate revocation list.") ER3(SEC_ERROR_REVOKED_CERTIFICATE_OCSP, (SEC_ERROR_BASE + 146), "Issuer's OCSP responder reports certificate is revoked.") ER3(SEC_ERROR_CRL_INVALID_VERSION, (SEC_ERROR_BASE + 147), "Issuer's Certificate Revocation List has an unknown version number.") ER3(SEC_ERROR_CRL_V1_CRITICAL_EXTENSION, (SEC_ERROR_BASE + 148), "Issuer's V1 Certificate Revocation List has a critical extension.") ER3(SEC_ERROR_CRL_UNKNOWN_CRITICAL_EXTENSION, (SEC_ERROR_BASE + 149), "Issuer's V2 Certificate Revocation List has an unknown critical extension.") ER3(SEC_ERROR_UNKNOWN_OBJECT_TYPE, (SEC_ERROR_BASE + 150), "Unknown object type specified.") ER3(SEC_ERROR_INCOMPATIBLE_PKCS11, (SEC_ERROR_BASE + 151), "PKCS #11 driver violates the spec in an incompatible way.") ER3(SEC_ERROR_NO_EVENT, (SEC_ERROR_BASE + 152), "No new slot event is available at this time.") ER3(SEC_ERROR_CRL_ALREADY_EXISTS, (SEC_ERROR_BASE + 153), "CRL already exists.") ER3(SEC_ERROR_NOT_INITIALIZED, (SEC_ERROR_BASE + 154), "NSS is not initialized.") ER3(SEC_ERROR_TOKEN_NOT_LOGGED_IN, (SEC_ERROR_BASE + 155), "The operation failed because the PKCS#11 token is not logged in.") ER3(SEC_ERROR_OCSP_RESPONDER_CERT_INVALID, (SEC_ERROR_BASE + 156), "Configured OCSP responder's certificate is invalid.") ER3(SEC_ERROR_OCSP_BAD_SIGNATURE, (SEC_ERROR_BASE + 157), "OCSP response has an invalid signature.") ER3(SEC_ERROR_OUT_OF_SEARCH_LIMITS, (SEC_ERROR_BASE + 158), "Cert validation search is out of search limits") ER3(SEC_ERROR_INVALID_POLICY_MAPPING, (SEC_ERROR_BASE + 159), "Policy mapping contains anypolicy") ER3(SEC_ERROR_POLICY_VALIDATION_FAILED, (SEC_ERROR_BASE + 160), "Cert chain fails policy validation") ER3(SEC_ERROR_UNKNOWN_AIA_LOCATION_TYPE, (SEC_ERROR_BASE + 161), "Unknown location type in cert AIA extension") ER3(SEC_ERROR_BAD_HTTP_RESPONSE, (SEC_ERROR_BASE + 162), "Server returned bad HTTP response") ER3(SEC_ERROR_BAD_LDAP_RESPONSE, (SEC_ERROR_BASE + 163), "Server returned bad LDAP response") ER3(SEC_ERROR_FAILED_TO_ENCODE_DATA, (SEC_ERROR_BASE + 164), "Failed to encode data with ASN1 encoder") ER3(SEC_ERROR_BAD_INFO_ACCESS_LOCATION, (SEC_ERROR_BASE + 165), "Bad information access location in cert extension") ER3(SEC_ERROR_LIBPKIX_INTERNAL, (SEC_ERROR_BASE + 166), "Libpkix internal error occurred during cert validation.") ER3(SEC_ERROR_PKCS11_GENERAL_ERROR, (SEC_ERROR_BASE + 167), "A PKCS #11 module returned CKR_GENERAL_ERROR, indicating that an unrecoverable error has occurred.") ER3(SEC_ERROR_PKCS11_FUNCTION_FAILED, (SEC_ERROR_BASE + 168), "A PKCS #11 module returned CKR_FUNCTION_FAILED, indicating that the requested function could not be performed. Trying the same operation again might succeed.") ER3(SEC_ERROR_PKCS11_DEVICE_ERROR, (SEC_ERROR_BASE + 169), "A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot.") ER3(SEC_ERROR_BAD_INFO_ACCESS_METHOD, (SEC_ERROR_BASE + 170), "Unknown information access method in certificate extension.") ER3(SEC_ERROR_CRL_IMPORT_FAILED, (SEC_ERROR_BASE + 171), "Error attempting to import a CRL.") ER3(SEC_ERROR_EXPIRED_PASSWORD, (SEC_ERROR_BASE + 172), "The password expired.") ER3(SEC_ERROR_LOCKED_PASSWORD, (SEC_ERROR_BASE + 173), "The password is locked.") ER3(SEC_ERROR_UNKNOWN_PKCS11_ERROR, (SEC_ERROR_BASE + 174), "Unknown PKCS #11 error.") ER3(SEC_ERROR_BAD_CRL_DP_URL, (SEC_ERROR_BASE + 175), "Invalid or unsupported URL in CRL distribution point name.") ER3(SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED, (SEC_ERROR_BASE + 176), "The certificate was signed using a signature algorithm that is disabled because it is not secure.") ER3(SEC_ERROR_LEGACY_DATABASE, (SEC_ERROR_BASE + 177), "The certificate/key database is in an old, unsupported format.") ER3(SEC_ERROR_APPLICATION_CALLBACK_ERROR, (SEC_ERROR_BASE + 178), "The certificate was rejected by extra checks in the application.")