1# This Source Code Form is subject to the terms of the Mozilla Public 2# License, v. 2.0. If a copy of the MPL was not distributed with this 3# file, You can obtain one at http://mozilla.org/MPL/2.0/. 4 5SSL_ERROR_EXPORT_ONLY_SERVER=Unable to communicate securely. Peer does not support high-grade encryption. 6SSL_ERROR_US_ONLY_SERVER=Unable to communicate securely. Peer requires high-grade encryption which is not supported. 7SSL_ERROR_NO_CYPHER_OVERLAP=Cannot communicate securely with peer: no common encryption algorithm(s). 8SSL_ERROR_NO_CERTIFICATE=Unable to find the certificate or key necessary for authentication. 9SSL_ERROR_BAD_CERTIFICATE=Unable to communicate securely with peer: peers’s certificate was rejected. 10SSL_ERROR_BAD_CLIENT=The server has encountered bad data from the client. 11SSL_ERROR_BAD_SERVER=The client has encountered bad data from the server. 12SSL_ERROR_UNSUPPORTED_CERTIFICATE_TYPE=Unsupported certificate type. 13SSL_ERROR_UNSUPPORTED_VERSION=Peer using unsupported version of security protocol. 14SSL_ERROR_WRONG_CERTIFICATE=Client authentication failed: private key in key database does not match public key in certificate database. 15SSL_ERROR_BAD_CERT_DOMAIN=Unable to communicate securely with peer: requested domain name does not match the server’s certificate. 16SSL_ERROR_POST_WARNING=Unrecognized SSL error code. 17SSL_ERROR_SSL2_DISABLED=Peer only supports SSL version 2, which is locally disabled. 18SSL_ERROR_BAD_MAC_READ=SSL received a record with an incorrect Message Authentication Code. 19SSL_ERROR_BAD_MAC_ALERT=SSL peer reports incorrect Message Authentication Code. 20SSL_ERROR_BAD_CERT_ALERT=SSL peer cannot verify your certificate. 21SSL_ERROR_REVOKED_CERT_ALERT=SSL peer rejected your certificate as revoked. 22SSL_ERROR_EXPIRED_CERT_ALERT=SSL peer rejected your certificate as expired. 23SSL_ERROR_SSL_DISABLED=Cannot connect: SSL is disabled. 24SSL_ERROR_FORTEZZA_PQG=Cannot connect: SSL peer is in another FORTEZZA domain. 25SSL_ERROR_UNKNOWN_CIPHER_SUITE=An unknown SSL cipher suite has been requested. 26SSL_ERROR_NO_CIPHERS_SUPPORTED=No cipher suites are present and enabled in this program. 27SSL_ERROR_BAD_BLOCK_PADDING=SSL received a record with bad block padding. 28SSL_ERROR_RX_RECORD_TOO_LONG=SSL received a record that exceeded the maximum permissible length. 29SSL_ERROR_TX_RECORD_TOO_LONG=SSL attempted to send a record that exceeded the maximum permissible length. 30SSL_ERROR_RX_MALFORMED_HELLO_REQUEST=SSL received a malformed Hello Request handshake message. 31SSL_ERROR_RX_MALFORMED_CLIENT_HELLO=SSL received a malformed Client Hello handshake message. 32SSL_ERROR_RX_MALFORMED_SERVER_HELLO=SSL received a malformed Server Hello handshake message. 33SSL_ERROR_RX_MALFORMED_CERTIFICATE=SSL received a malformed Certificate handshake message. 34SSL_ERROR_RX_MALFORMED_SERVER_KEY_EXCH=SSL received a malformed Server Key Exchange handshake message. 35SSL_ERROR_RX_MALFORMED_CERT_REQUEST=SSL received a malformed Certificate Request handshake message. 36SSL_ERROR_RX_MALFORMED_HELLO_DONE=SSL received a malformed Server Hello Done handshake message. 37SSL_ERROR_RX_MALFORMED_CERT_VERIFY=SSL received a malformed Certificate Verify handshake message. 38SSL_ERROR_RX_MALFORMED_CLIENT_KEY_EXCH=SSL received a malformed Client Key Exchange handshake message. 39SSL_ERROR_RX_MALFORMED_FINISHED=SSL received a malformed Finished handshake message. 40SSL_ERROR_RX_MALFORMED_CHANGE_CIPHER=SSL received a malformed Change Cipher Spec record. 41SSL_ERROR_RX_MALFORMED_ALERT=SSL received a malformed Alert record. 42SSL_ERROR_RX_MALFORMED_HANDSHAKE=SSL received a malformed Handshake record. 43SSL_ERROR_RX_MALFORMED_APPLICATION_DATA=SSL received a malformed Application Data record. 44SSL_ERROR_RX_UNEXPECTED_HELLO_REQUEST=SSL received an unexpected Hello Request handshake message. 45SSL_ERROR_RX_UNEXPECTED_CLIENT_HELLO=SSL received an unexpected Client Hello handshake message. 46SSL_ERROR_RX_UNEXPECTED_SERVER_HELLO=SSL received an unexpected Server Hello handshake message. 47SSL_ERROR_RX_UNEXPECTED_CERTIFICATE=SSL received an unexpected Certificate handshake message. 48SSL_ERROR_RX_UNEXPECTED_SERVER_KEY_EXCH=SSL received an unexpected Server Key Exchange handshake message. 49SSL_ERROR_RX_UNEXPECTED_CERT_REQUEST=SSL received an unexpected Certificate Request handshake message. 50SSL_ERROR_RX_UNEXPECTED_HELLO_DONE=SSL received an unexpected Server Hello Done handshake message. 51SSL_ERROR_RX_UNEXPECTED_CERT_VERIFY=SSL received an unexpected Certificate Verify handshake message. 52SSL_ERROR_RX_UNEXPECTED_CLIENT_KEY_EXCH=SSL received an unexpected Client Key Exchange handshake message. 53SSL_ERROR_RX_UNEXPECTED_FINISHED=SSL received an unexpected Finished handshake message. 54SSL_ERROR_RX_UNEXPECTED_CHANGE_CIPHER=SSL received an unexpected Change Cipher Spec record. 55SSL_ERROR_RX_UNEXPECTED_ALERT=SSL received an unexpected Alert record. 56SSL_ERROR_RX_UNEXPECTED_HANDSHAKE=SSL received an unexpected Handshake record. 57SSL_ERROR_RX_UNEXPECTED_APPLICATION_DATA=SSL received an unexpected Application Data record. 58SSL_ERROR_RX_UNKNOWN_RECORD_TYPE=SSL received a record with an unknown content type. 59SSL_ERROR_RX_UNKNOWN_HANDSHAKE=SSL received a handshake message with an unknown message type. 60SSL_ERROR_RX_UNKNOWN_ALERT=SSL received an alert record with an unknown alert description. 61SSL_ERROR_CLOSE_NOTIFY_ALERT=SSL peer has closed this connection. 62SSL_ERROR_HANDSHAKE_UNEXPECTED_ALERT=SSL peer was not expecting a handshake message it received. 63SSL_ERROR_DECOMPRESSION_FAILURE_ALERT=SSL peer was unable to successfully decompress an SSL record it received. 64SSL_ERROR_HANDSHAKE_FAILURE_ALERT=SSL peer was unable to negotiate an acceptable set of security parameters. 65SSL_ERROR_ILLEGAL_PARAMETER_ALERT=SSL peer rejected a handshake message for unacceptable content. 66SSL_ERROR_UNSUPPORTED_CERT_ALERT=SSL peer does not support certificates of the type it received. 67SSL_ERROR_CERTIFICATE_UNKNOWN_ALERT=SSL peer had some unspecified issue with the certificate it received. 68SSL_ERROR_GENERATE_RANDOM_FAILURE=SSL experienced a failure of its random number generator. 69SSL_ERROR_SIGN_HASHES_FAILURE=Unable to digitally sign data required to verify your certificate. 70SSL_ERROR_EXTRACT_PUBLIC_KEY_FAILURE=SSL was unable to extract the public key from the peer’s certificate. 71SSL_ERROR_SERVER_KEY_EXCHANGE_FAILURE=Unspecified failure while processing SSL Server Key Exchange handshake. 72SSL_ERROR_CLIENT_KEY_EXCHANGE_FAILURE=Unspecified failure while processing SSL Client Key Exchange handshake. 73SSL_ERROR_ENCRYPTION_FAILURE=Bulk data encryption algorithm failed in selected cipher suite. 74SSL_ERROR_DECRYPTION_FAILURE=Bulk data decryption algorithm failed in selected cipher suite. 75SSL_ERROR_SOCKET_WRITE_FAILURE=Attempt to write encrypted data to underlying socket failed. 76SSL_ERROR_MD5_DIGEST_FAILURE=MD5 digest function failed. 77SSL_ERROR_SHA_DIGEST_FAILURE=SHA-1 digest function failed. 78SSL_ERROR_MAC_COMPUTATION_FAILURE=MAC computation failed. 79SSL_ERROR_SYM_KEY_CONTEXT_FAILURE=Failure to create Symmetric Key context. 80SSL_ERROR_SYM_KEY_UNWRAP_FAILURE=Failure to unwrap the Symmetric key in Client Key Exchange message. 81SSL_ERROR_PUB_KEY_SIZE_LIMIT_EXCEEDED=SSL Server attempted to use domestic-grade public key with export cipher suite. 82SSL_ERROR_IV_PARAM_FAILURE=PKCS11 code failed to translate an IV into a param. 83SSL_ERROR_INIT_CIPHER_SUITE_FAILURE=Failed to initialize the selected cipher suite. 84SSL_ERROR_SESSION_KEY_GEN_FAILURE=Client failed to generate session keys for SSL session. 85SSL_ERROR_NO_SERVER_KEY_FOR_ALG=Server has no key for the attempted key exchange algorithm. 86SSL_ERROR_TOKEN_INSERTION_REMOVAL=PKCS#11 token was inserted or removed while operation was in progress. 87SSL_ERROR_TOKEN_SLOT_NOT_FOUND=No PKCS#11 token could be found to do a required operation. 88SSL_ERROR_NO_COMPRESSION_OVERLAP=Cannot communicate securely with peer: no common compression algorithm(s). 89SSL_ERROR_HANDSHAKE_NOT_COMPLETED=Cannot initiate another SSL handshake until current handshake is complete. 90SSL_ERROR_BAD_HANDSHAKE_HASH_VALUE=Received incorrect handshakes hash values from peer. 91SSL_ERROR_CERT_KEA_MISMATCH=The certificate provided cannot be used with the selected key exchange algorithm. 92SSL_ERROR_NO_TRUSTED_SSL_CLIENT_CA=No certificate authority is trusted for SSL client authentication. 93SSL_ERROR_SESSION_NOT_FOUND=Client’s SSL session ID not found in server’s session cache. 94SSL_ERROR_DECRYPTION_FAILED_ALERT=Peer was unable to decrypt an SSL record it received. 95SSL_ERROR_RECORD_OVERFLOW_ALERT=Peer received an SSL record that was longer than is permitted. 96SSL_ERROR_UNKNOWN_CA_ALERT=Peer does not recognize and trust the CA that issued your certificate. 97SSL_ERROR_ACCESS_DENIED_ALERT=Peer received a valid certificate, but access was denied. 98SSL_ERROR_DECODE_ERROR_ALERT=Peer could not decode an SSL handshake message. 99SSL_ERROR_DECRYPT_ERROR_ALERT=Peer reports failure of signature verification or key exchange. 100SSL_ERROR_EXPORT_RESTRICTION_ALERT=Peer reports negotiation not in compliance with export regulations. 101SSL_ERROR_PROTOCOL_VERSION_ALERT=Peer reports incompatible or unsupported protocol version. 102SSL_ERROR_INSUFFICIENT_SECURITY_ALERT=Server requires ciphers more secure than those supported by client. 103SSL_ERROR_INTERNAL_ERROR_ALERT=Peer reports it experienced an internal error. 104SSL_ERROR_USER_CANCELED_ALERT=Peer user canceled handshake. 105SSL_ERROR_NO_RENEGOTIATION_ALERT=Peer does not permit renegotiation of SSL security parameters. 106SSL_ERROR_SERVER_CACHE_NOT_CONFIGURED=SSL server cache not configured and not disabled for this socket. 107SSL_ERROR_UNSUPPORTED_EXTENSION_ALERT=SSL peer does not support requested TLS hello extension. 108SSL_ERROR_CERTIFICATE_UNOBTAINABLE_ALERT=SSL peer could not obtain your certificate from the supplied URL. 109SSL_ERROR_UNRECOGNIZED_NAME_ALERT=SSL peer has no certificate for the requested DNS name. 110SSL_ERROR_BAD_CERT_STATUS_RESPONSE_ALERT=SSL peer was unable to get an OCSP response for its certificate. 111SSL_ERROR_BAD_CERT_HASH_VALUE_ALERT=SSL peer reported bad certificate hash value. 112SSL_ERROR_RX_UNEXPECTED_NEW_SESSION_TICKET=SSL received an unexpected New Session Ticket handshake message. 113SSL_ERROR_RX_MALFORMED_NEW_SESSION_TICKET=SSL received a malformed New Session Ticket handshake message. 114SSL_ERROR_DECOMPRESSION_FAILURE=SSL received a compressed record that could not be decompressed. 115SSL_ERROR_RENEGOTIATION_NOT_ALLOWED=Renegotiation is not allowed on this SSL socket. 116SSL_ERROR_UNSAFE_NEGOTIATION=Peer attempted old style (potentially vulnerable) handshake. 117SSL_ERROR_RX_UNEXPECTED_UNCOMPRESSED_RECORD=SSL received an unexpected uncompressed record. 118SSL_ERROR_WEAK_SERVER_EPHEMERAL_DH_KEY=SSL received a weak ephemeral Diffie-Hellman key in Server Key Exchange handshake message. 119SSL_ERROR_NEXT_PROTOCOL_DATA_INVALID=SSL received invalid NPN extension data. 120SSL_ERROR_FEATURE_NOT_SUPPORTED_FOR_SSL2=SSL feature not supported for SSL 2.0 connections. 121SSL_ERROR_FEATURE_NOT_SUPPORTED_FOR_SERVERS=SSL feature not supported for servers. 122SSL_ERROR_FEATURE_NOT_SUPPORTED_FOR_CLIENTS=SSL feature not supported for clients. 123SSL_ERROR_INVALID_VERSION_RANGE=SSL version range is not valid. 124SSL_ERROR_CIPHER_DISALLOWED_FOR_VERSION=SSL peer selected a cipher suite disallowed for the selected protocol version. 125SSL_ERROR_RX_MALFORMED_HELLO_VERIFY_REQUEST=SSL received a malformed Hello Verify Request handshake message. 126SSL_ERROR_RX_UNEXPECTED_HELLO_VERIFY_REQUEST=SSL received an unexpected Hello Verify Request handshake message. 127SSL_ERROR_FEATURE_NOT_SUPPORTED_FOR_VERSION=SSL feature not supported for the protocol version. 128SSL_ERROR_RX_UNEXPECTED_CERT_STATUS=SSL received an unexpected Certificate Status handshake message. 129SSL_ERROR_UNSUPPORTED_HASH_ALGORITHM=Unsupported hash algorithm used by TLS peer. 130SSL_ERROR_DIGEST_FAILURE=Digest function failed. 131SSL_ERROR_INCORRECT_SIGNATURE_ALGORITHM=Incorrect signature algorithm specified in a digitally-signed element. 132SSL_ERROR_NEXT_PROTOCOL_NO_CALLBACK=The next protocol negotiation extension was enabled, but the callback was cleared prior to being needed. 133SSL_ERROR_NEXT_PROTOCOL_NO_PROTOCOL=The server supports no protocols that the client advertises in the ALPN extension. 134SSL_ERROR_INAPPROPRIATE_FALLBACK_ALERT=The server rejected the handshake because the client downgraded to a lower TLS version than the server supports. 135SSL_ERROR_WEAK_SERVER_CERT_KEY=The server certificate included a public key that was too weak. 136SSL_ERROR_RX_SHORT_DTLS_READ=Not enough room in buffer for DTLS record. 137SSL_ERROR_NO_SUPPORTED_SIGNATURE_ALGORITHM=No supported TLS signature algorithm was configured. 138SSL_ERROR_UNSUPPORTED_SIGNATURE_ALGORITHM=The peer used an unsupported combination of signature and hash algorithm. 139SSL_ERROR_MISSING_EXTENDED_MASTER_SECRET=The peer tried to resume without a correct extended_master_secret extension. 140SSL_ERROR_UNEXPECTED_EXTENDED_MASTER_SECRET=The peer tried to resume with an unexpected extended_master_secret extension. 141SEC_ERROR_IO=An I/O error occurred during security authorization. 142SEC_ERROR_LIBRARY_FAILURE=security library failure. 143SEC_ERROR_BAD_DATA=security library: received bad data. 144SEC_ERROR_OUTPUT_LEN=security library: output length error. 145SEC_ERROR_INPUT_LEN=security library has experienced an input length error. 146SEC_ERROR_INVALID_ARGS=security library: invalid arguments. 147SEC_ERROR_INVALID_ALGORITHM=security library: invalid algorithm. 148SEC_ERROR_INVALID_AVA=security library: invalid AVA. 149SEC_ERROR_INVALID_TIME=Improperly formatted time string. 150SEC_ERROR_BAD_DER=security library: improperly formatted DER-encoded message. 151SEC_ERROR_BAD_SIGNATURE=Peer’s certificate has an invalid signature. 152SEC_ERROR_EXPIRED_CERTIFICATE=Peer’s Certificate has expired. 153SEC_ERROR_REVOKED_CERTIFICATE=Peer’s Certificate has been revoked. 154SEC_ERROR_UNKNOWN_ISSUER=Peer’s Certificate issuer is not recognized. 155SEC_ERROR_BAD_KEY=Peer’s public key is invalid. 156SEC_ERROR_BAD_PASSWORD=The security password entered is incorrect. 157SEC_ERROR_RETRY_PASSWORD=New password entered incorrectly. Please try again. 158SEC_ERROR_NO_NODELOCK=security library: no nodelock. 159SEC_ERROR_BAD_DATABASE=security library: bad database. 160SEC_ERROR_NO_MEMORY=security library: memory allocation failure. 161SEC_ERROR_UNTRUSTED_ISSUER=Peer’s certificate issuer has been marked as not trusted by the user. 162SEC_ERROR_UNTRUSTED_CERT=Peer’s certificate has been marked as not trusted by the user. 163SEC_ERROR_DUPLICATE_CERT=Certificate already exists in your database. 164SEC_ERROR_DUPLICATE_CERT_NAME=Downloaded certificate’s name duplicates one already in your database. 165SEC_ERROR_ADDING_CERT=Error adding certificate to database. 166SEC_ERROR_FILING_KEY=Error refiling the key for this certificate. 167SEC_ERROR_NO_KEY=The private key for this certificate cannot be found in key database 168SEC_ERROR_CERT_VALID=This certificate is valid. 169SEC_ERROR_CERT_NOT_VALID=This certificate is not valid. 170SEC_ERROR_CERT_NO_RESPONSE=Cert Library: No Response 171SEC_ERROR_EXPIRED_ISSUER_CERTIFICATE=The certificate issuer’s certificate has expired. Check your system date and time. 172SEC_ERROR_CRL_EXPIRED=The CRL for the certificate’s issuer has expired. Update it or check your system date and time. 173SEC_ERROR_CRL_BAD_SIGNATURE=The CRL for the certificate’s issuer has an invalid signature. 174SEC_ERROR_CRL_INVALID=New CRL has an invalid format. 175SEC_ERROR_EXTENSION_VALUE_INVALID=Certificate extension value is invalid. 176SEC_ERROR_EXTENSION_NOT_FOUND=Certificate extension not found. 177SEC_ERROR_CA_CERT_INVALID=Issuer certificate is invalid. 178SEC_ERROR_PATH_LEN_CONSTRAINT_INVALID=Certificate path length constraint is invalid. 179SEC_ERROR_CERT_USAGES_INVALID=Certificate usages field is invalid. 180SEC_INTERNAL_ONLY=**Internal ONLY module** 181SEC_ERROR_INVALID_KEY=The key does not support the requested operation. 182SEC_ERROR_UNKNOWN_CRITICAL_EXTENSION=Certificate contains unknown critical extension. 183SEC_ERROR_OLD_CRL=New CRL is not later than the current one. 184SEC_ERROR_NO_EMAIL_CERT=Not encrypted or signed: you do not yet have an email certificate. 185SEC_ERROR_NO_RECIPIENT_CERTS_QUERY=Not encrypted: you do not have certificates for each of the recipients. 186SEC_ERROR_NOT_A_RECIPIENT=Cannot decrypt: you are not a recipient, or matching certificate and private key not found. 187SEC_ERROR_PKCS7_KEYALG_MISMATCH=Cannot decrypt: key encryption algorithm does not match your certificate. 188SEC_ERROR_PKCS7_BAD_SIGNATURE=Signature verification failed: no signer found, too many signers found, or improper or corrupted data. 189SEC_ERROR_UNSUPPORTED_KEYALG=Unsupported or unknown key algorithm. 190SEC_ERROR_DECRYPTION_DISALLOWED=Cannot decrypt: encrypted using a disallowed algorithm or key size. 191XP_SEC_FORTEZZA_BAD_CARD=Fortezza card has not been properly initialized. Please remove it and return it to your issuer. 192XP_SEC_FORTEZZA_NO_CARD=No Fortezza cards Found 193XP_SEC_FORTEZZA_NONE_SELECTED=No Fortezza card selected 194XP_SEC_FORTEZZA_MORE_INFO=Please select a personality to get more info on 195XP_SEC_FORTEZZA_PERSON_NOT_FOUND=Personality not found 196XP_SEC_FORTEZZA_NO_MORE_INFO=No more information on that Personality 197XP_SEC_FORTEZZA_BAD_PIN=Invalid Pin 198XP_SEC_FORTEZZA_PERSON_ERROR=Couldn’t initialize Fortezza personalities. 199SEC_ERROR_NO_KRL=No KRL for this site’s certificate has been found. 200SEC_ERROR_KRL_EXPIRED=The KRL for this site’s certificate has expired. 201SEC_ERROR_KRL_BAD_SIGNATURE=The KRL for this site’s certificate has an invalid signature. 202SEC_ERROR_REVOKED_KEY=The key for this site’s certificate has been revoked. 203SEC_ERROR_KRL_INVALID=New KRL has an invalid format. 204SEC_ERROR_NEED_RANDOM=security library: need random data. 205SEC_ERROR_NO_MODULE=security library: no security module can perform the requested operation. 206SEC_ERROR_NO_TOKEN=The security card or token does not exist, needs to be initialized, or has been removed. 207SEC_ERROR_READ_ONLY=security library: read-only database. 208SEC_ERROR_NO_SLOT_SELECTED=No slot or token was selected. 209SEC_ERROR_CERT_NICKNAME_COLLISION=A certificate with the same nickname already exists. 210SEC_ERROR_KEY_NICKNAME_COLLISION=A key with the same nickname already exists. 211SEC_ERROR_SAFE_NOT_CREATED=error while creating safe object 212SEC_ERROR_BAGGAGE_NOT_CREATED=error while creating baggage object 213XP_JAVA_REMOVE_PRINCIPAL_ERROR=Couldn’t remove the principal 214XP_JAVA_DELETE_PRIVILEGE_ERROR=Couldn’t delete the privilege 215XP_JAVA_CERT_NOT_EXISTS_ERROR=This principal doesn’t have a certificate 216SEC_ERROR_BAD_EXPORT_ALGORITHM=Required algorithm is not allowed. 217SEC_ERROR_EXPORTING_CERTIFICATES=Error attempting to export certificates. 218SEC_ERROR_IMPORTING_CERTIFICATES=Error attempting to import certificates. 219SEC_ERROR_PKCS12_DECODING_PFX=Unable to import. Decoding error. File not valid. 220SEC_ERROR_PKCS12_INVALID_MAC=Unable to import. Invalid MAC. Incorrect password or corrupt file. 221SEC_ERROR_PKCS12_UNSUPPORTED_MAC_ALGORITHM=Unable to import. MAC algorithm not supported. 222SEC_ERROR_PKCS12_UNSUPPORTED_TRANSPORT_MODE=Unable to import. Only password integrity and privacy modes supported. 223SEC_ERROR_PKCS12_CORRUPT_PFX_STRUCTURE=Unable to import. File structure is corrupt. 224SEC_ERROR_PKCS12_UNSUPPORTED_PBE_ALGORITHM=Unable to import. Encryption algorithm not supported. 225SEC_ERROR_PKCS12_UNSUPPORTED_VERSION=Unable to import. File version not supported. 226SEC_ERROR_PKCS12_PRIVACY_PASSWORD_INCORRECT=Unable to import. Incorrect privacy password. 227SEC_ERROR_PKCS12_CERT_COLLISION=Unable to import. Same nickname already exists in database. 228SEC_ERROR_USER_CANCELLED=The user pressed cancel. 229SEC_ERROR_PKCS12_DUPLICATE_DATA=Not imported, already in database. 230SEC_ERROR_MESSAGE_SEND_ABORTED=Message not sent. 231SEC_ERROR_INADEQUATE_KEY_USAGE=Certificate key usage inadequate for attempted operation. 232SEC_ERROR_INADEQUATE_CERT_TYPE=Certificate type not approved for application. 233SEC_ERROR_CERT_ADDR_MISMATCH=Address in signing certificate does not match address in message headers. 234SEC_ERROR_PKCS12_UNABLE_TO_IMPORT_KEY=Unable to import. Error attempting to import private key. 235SEC_ERROR_PKCS12_IMPORTING_CERT_CHAIN=Unable to import. Error attempting to import certificate chain. 236SEC_ERROR_PKCS12_UNABLE_TO_LOCATE_OBJECT_BY_NAME=Unable to export. Unable to locate certificate or key by nickname. 237SEC_ERROR_PKCS12_UNABLE_TO_EXPORT_KEY=Unable to export. Private Key could not be located and exported. 238SEC_ERROR_PKCS12_UNABLE_TO_WRITE=Unable to export. Unable to write the export file. 239SEC_ERROR_PKCS12_UNABLE_TO_READ=Unable to import. Unable to read the import file. 240SEC_ERROR_PKCS12_KEY_DATABASE_NOT_INITIALIZED=Unable to export. Key database corrupt or deleted. 241SEC_ERROR_KEYGEN_FAIL=Unable to generate public/private key pair. 242SEC_ERROR_INVALID_PASSWORD=Password entered is invalid. Please pick a different one. 243SEC_ERROR_RETRY_OLD_PASSWORD=Old password entered incorrectly. Please try again. 244SEC_ERROR_BAD_NICKNAME=Certificate nickname already in use. 245SEC_ERROR_NOT_FORTEZZA_ISSUER=Peer FORTEZZA chain has a non-FORTEZZA Certificate. 246SEC_ERROR_CANNOT_MOVE_SENSITIVE_KEY=A sensitive key cannot be moved to the slot where it is needed. 247SEC_ERROR_JS_INVALID_MODULE_NAME=Invalid module name. 248SEC_ERROR_JS_INVALID_DLL=Invalid module path/filename 249SEC_ERROR_JS_ADD_MOD_FAILURE=Unable to add module 250SEC_ERROR_JS_DEL_MOD_FAILURE=Unable to delete module 251SEC_ERROR_OLD_KRL=New KRL is not later than the current one. 252SEC_ERROR_CKL_CONFLICT=New CKL has different issuer than current CKL. Delete current CKL. 253SEC_ERROR_CERT_NOT_IN_NAME_SPACE=The Certifying Authority for this certificate is not permitted to issue a certificate with this name. 254SEC_ERROR_KRL_NOT_YET_VALID=The key revocation list for this certificate is not yet valid. 255SEC_ERROR_CRL_NOT_YET_VALID=The certificate revocation list for this certificate is not yet valid. 256SEC_ERROR_UNKNOWN_CERT=The requested certificate could not be found. 257SEC_ERROR_UNKNOWN_SIGNER=The signer’s certificate could not be found. 258SEC_ERROR_CERT_BAD_ACCESS_LOCATION=The location for the certificate status server has invalid format. 259SEC_ERROR_OCSP_UNKNOWN_RESPONSE_TYPE=The OCSP response cannot be fully decoded; it is of an unknown type. 260SEC_ERROR_OCSP_BAD_HTTP_RESPONSE=The OCSP server returned unexpected/invalid HTTP data. 261SEC_ERROR_OCSP_MALFORMED_REQUEST=The OCSP server found the request to be corrupted or improperly formed. 262SEC_ERROR_OCSP_SERVER_ERROR=The OCSP server experienced an internal error. 263SEC_ERROR_OCSP_TRY_SERVER_LATER=The OCSP server suggests trying again later. 264SEC_ERROR_OCSP_REQUEST_NEEDS_SIG=The OCSP server requires a signature on this request. 265SEC_ERROR_OCSP_UNAUTHORIZED_REQUEST=The OCSP server has refused this request as unauthorized. 266SEC_ERROR_OCSP_UNKNOWN_RESPONSE_STATUS=The OCSP server returned an unrecognizable status. 267SEC_ERROR_OCSP_UNKNOWN_CERT=The OCSP server has no status for the certificate. 268SEC_ERROR_OCSP_NOT_ENABLED=You must enable OCSP before performing this operation. 269SEC_ERROR_OCSP_NO_DEFAULT_RESPONDER=You must set the OCSP default responder before performing this operation. 270SEC_ERROR_OCSP_MALFORMED_RESPONSE=The response from the OCSP server was corrupted or improperly formed. 271SEC_ERROR_OCSP_UNAUTHORIZED_RESPONSE=The signer of the OCSP response is not authorized to give status for this certificate. 272SEC_ERROR_OCSP_FUTURE_RESPONSE=The OCSP response is not yet valid (contains a date in the future). 273SEC_ERROR_OCSP_OLD_RESPONSE=The OCSP response contains out-of-date information. 274SEC_ERROR_DIGEST_NOT_FOUND=The CMS or PKCS #7 Digest was not found in signed message. 275SEC_ERROR_UNSUPPORTED_MESSAGE_TYPE=The CMS or PKCS #7 Message type is unsupported. 276SEC_ERROR_MODULE_STUCK=PKCS #11 module could not be removed because it is still in use. 277SEC_ERROR_BAD_TEMPLATE=Could not decode ASN.1 data. Specified template was invalid. 278SEC_ERROR_CRL_NOT_FOUND=No matching CRL was found. 279SEC_ERROR_REUSED_ISSUER_AND_SERIAL=You are attempting to import a cert with the same issuer/serial as an existing cert, but that is not the same cert. 280SEC_ERROR_BUSY=NSS could not shutdown. Objects are still in use. 281SEC_ERROR_EXTRA_INPUT=DER-encoded message contained extra unused data. 282SEC_ERROR_UNSUPPORTED_ELLIPTIC_CURVE=Unsupported elliptic curve. 283SEC_ERROR_UNSUPPORTED_EC_POINT_FORM=Unsupported elliptic curve point form. 284SEC_ERROR_UNRECOGNIZED_OID=Unrecognized Object Identifier. 285SEC_ERROR_OCSP_INVALID_SIGNING_CERT=Invalid OCSP signing certificate in OCSP response. 286SEC_ERROR_REVOKED_CERTIFICATE_CRL=Certificate is revoked in issuer’s certificate revocation list. 287SEC_ERROR_REVOKED_CERTIFICATE_OCSP=Issuer’s OCSP responder reports certificate is revoked. 288SEC_ERROR_CRL_INVALID_VERSION=Issuer’s Certificate Revocation List has an unknown version number. 289SEC_ERROR_CRL_V1_CRITICAL_EXTENSION=Issuer’s V1 Certificate Revocation List has a critical extension. 290SEC_ERROR_CRL_UNKNOWN_CRITICAL_EXTENSION=Issuer’s V2 Certificate Revocation List has an unknown critical extension. 291SEC_ERROR_UNKNOWN_OBJECT_TYPE=Unknown object type specified. 292SEC_ERROR_INCOMPATIBLE_PKCS11=PKCS #11 driver violates the spec in an incompatible way. 293SEC_ERROR_NO_EVENT=No new slot event is available at this time. 294SEC_ERROR_CRL_ALREADY_EXISTS=CRL already exists. 295SEC_ERROR_NOT_INITIALIZED=NSS is not initialized. 296SEC_ERROR_TOKEN_NOT_LOGGED_IN=The operation failed because the PKCS#11 token is not logged in. 297SEC_ERROR_OCSP_RESPONDER_CERT_INVALID=Configured OCSP responder’s certificate is invalid. 298SEC_ERROR_OCSP_BAD_SIGNATURE=OCSP response has an invalid signature. 299SEC_ERROR_OUT_OF_SEARCH_LIMITS=Cert validation search is out of search limits 300SEC_ERROR_INVALID_POLICY_MAPPING=Policy mapping contains anypolicy 301SEC_ERROR_POLICY_VALIDATION_FAILED=Cert chain fails policy validation 302SEC_ERROR_UNKNOWN_AIA_LOCATION_TYPE=Unknown location type in cert AIA extension 303SEC_ERROR_BAD_HTTP_RESPONSE=Server returned bad HTTP response 304SEC_ERROR_BAD_LDAP_RESPONSE=Server returned bad LDAP response 305SEC_ERROR_FAILED_TO_ENCODE_DATA=Failed to encode data with ASN1 encoder 306SEC_ERROR_BAD_INFO_ACCESS_LOCATION=Bad information access location in cert extension 307SEC_ERROR_LIBPKIX_INTERNAL=Libpkix internal error occurred during cert validation. 308SEC_ERROR_PKCS11_GENERAL_ERROR=A PKCS #11 module returned CKR_GENERAL_ERROR, indicating that an unrecoverable error has occurred. 309SEC_ERROR_PKCS11_FUNCTION_FAILED=A PKCS #11 module returned CKR_FUNCTION_FAILED, indicating that the requested function could not be performed. Trying the same operation again might succeed. 310SEC_ERROR_PKCS11_DEVICE_ERROR=A PKCS #11 module returned CKR_DEVICE_ERROR, indicating that a problem has occurred with the token or slot. 311SEC_ERROR_BAD_INFO_ACCESS_METHOD=Unknown information access method in certificate extension. 312SEC_ERROR_CRL_IMPORT_FAILED=Error attempting to import a CRL. 313SEC_ERROR_EXPIRED_PASSWORD=The password expired. 314SEC_ERROR_LOCKED_PASSWORD=The password is locked. 315SEC_ERROR_UNKNOWN_PKCS11_ERROR=Unknown PKCS #11 error. 316SEC_ERROR_BAD_CRL_DP_URL=Invalid or unsupported URL in CRL distribution point name. 317SEC_ERROR_CERT_SIGNATURE_ALGORITHM_DISABLED=The certificate was signed using a signature algorithm that is disabled because it is not secure. 318MOZILLA_PKIX_ERROR_KEY_PINNING_FAILURE=The server uses key pinning (HPKP) but no trusted certificate chain could be constructed that matches the pinset. Key pinning violations cannot be overridden. 319MOZILLA_PKIX_ERROR_CA_CERT_USED_AS_END_ENTITY=The server uses a certificate with a basic constraints extension identifying it as a certificate authority. For a properly-issued certificate, this should not be the case. 320MOZILLA_PKIX_ERROR_INADEQUATE_KEY_SIZE=The server presented a certificate with a key size that is too small to establish a secure connection. 321MOZILLA_PKIX_ERROR_V1_CERT_USED_AS_CA=An X.509 version 1 certificate that is not a trust anchor was used to issue the server’s certificate. X.509 version 1 certificates are deprecated and should not be used to sign other certificates. 322MOZILLA_PKIX_ERROR_NOT_YET_VALID_CERTIFICATE=The server presented a certificate that is not yet valid. 323MOZILLA_PKIX_ERROR_NOT_YET_VALID_ISSUER_CERTIFICATE=A certificate that is not yet valid was used to issue the server’s certificate. 324MOZILLA_PKIX_ERROR_SIGNATURE_ALGORITHM_MISMATCH=The signature algorithm in the signature field of the certificate does not match the algorithm in its signatureAlgorithm field. 325MOZILLA_PKIX_ERROR_OCSP_RESPONSE_FOR_CERT_MISSING=The OCSP response does not include a status for the certificate being verified. 326MOZILLA_PKIX_ERROR_VALIDITY_TOO_LONG=The server presented a certificate that is valid for too long. 327MOZILLA_PKIX_ERROR_REQUIRED_TLS_FEATURE_MISSING=A required TLS feature is missing. 328MOZILLA_PKIX_ERROR_INVALID_INTEGER_ENCODING=The server presented a certificate that contains an invalid encoding of an integer. Common causes include negative serial numbers, negative RSA moduli, and encodings that are longer than necessary. 329MOZILLA_PKIX_ERROR_EMPTY_ISSUER_NAME=The server presented a certificate with an empty issuer distinguished name. 330MOZILLA_PKIX_ERROR_ADDITIONAL_POLICY_CONSTRAINT_FAILED=An additional policy constraint failed when validating this certificate. 331MOZILLA_PKIX_ERROR_SELF_SIGNED_CERT=The certificate is not trusted because it is self-signed. 332