SSL

Error Messages

When an exception is thrown by the implementation of the SSL API, the error message

SSL-2.0:E=<messageId>

is issued, where <messageId> meaning is defined in the next table:

SSL Error Messages
Message ID Description
-2 Connection reset by the peer.
-3 Connection timed out.
-5 Dispatch blocking request queue is full, and a new request cannot be added now.
-6 Certificate parsing error.
-7 The certificate data size bigger than the immortal buffer used to process certificate.
-8 No trusted certificate found.
-9 Basic constraints check failed: Intermediate certificate is not a CA certificate.
-10 Subject/issuer name chaining error.
-21 Wrong block type for RSA function.
-22 RSA buffer error: Output is too small, or input is too large.
-23 Output buffer is too small, or input is too large.
-24 Certificate AlogID setting error.
-25 Certificate public-key setting error.
-26 Certificate date validity setting error.
-27 Certificate subject name setting error.
-28 Certificate issuer name setting error.
-29 CA basic constraint setting error.
-30 Extensions setting error.
-31 Invalid ASN version number.
-32 ASN get int error: invalid data.
-33 ASN key init error: invalid input.
-34 Invalid ASN object id.
-35 Not null ASN tag.
-36 ASN parsing error: zero expected.
-37 ASN bit string error: wrong id.
-38 ASN OID error: unknown sum id.
-39 ASN date error: bad size.
-40 ASN date error: current date before.
-41 ASN date error: current date after.
-42 ASN signature error: mismatched OID.
-43 ASN time error: unknown time type.
-44 ASN input error: not enough data.
-45 ASN signature error: confirm failure.
-46 ASN signature error: unsupported hash type.
-47 ASN signature error: unsupported key type.
-48 ASN key init error: invalid input.
-49 ASN NTRU key decode error: invalid input.
-50 X.509 critical extension ignored.
-51 ASN no signer to confirm failure (no CA found).
-52 ASN CRL signature-confirm failure.
-53 ASN CRL: no signer to confirm failure.
-54 ASN OCSP signature-confirm failure.
-60 ECC input argument is wrong type.
-61 ECC ASN1 bad key data: invalid input.
-62 ECC curve sum OID unsupported: invalid input.
-63 Bad function argument provided.
-64 Feature not compiled in.
-65 Unicode password too big.
-66 No password provided by user.
-67 AltNames extensions too big.
-70 AES-GCM Authentication check fail.
-71 AES-CCM Authentication check fail.
-80 Cavium Init type error.
-81 Bad alignment error, no alloc help.
-82 Bad ECC encrypt state operation.
-83 Bad padding: message wrong length.
-84 Certificate request attributes setting error.
-85 PKCS#7 error: mismatched OID value.
-86 PKCS#7 error: no matching recipient found.
-87 FIPS mode not allowed error.
-88 Name constraint error.
-89 Random Number Generator failed.
-90 FIPS Mode HMAC minimum key length error.
-91 RSA Padding error.
-92 Export public ECC key in ANSI format error: Output length only set.
-93 In Core Integrity check FIPS error.
-94 AES Known Answer Test check FIPS error.
-95 DES3 Known Answer Test check FIPS error.
-96 HMAC Known Answer Test check FIPS error.
-97 RSA Known Answer Test check FIPS error.
-98 DRBG Known Answer Test check FIPS error.
-99 DRBG Continuous Test FIPS error.
-100 AESGCM Known Answer Test check FIPS error.
-101 Process input state error.
-102 Bad index to key rounds.
-103 Out of memory.
-104 Verify problem found on completion.
-105 Verify mac problem.
-106 Parse error on header.
-107 Weird handshake type.
-108 Error state on socket.
-109 Expected data, not there.
-110 Not enough data to complete task.
-111 Unknown type in record header.
-112 Error during decryption.
-113 Received alert: fatal error.
-114 Error during encryption.
-116 Need peer’s key.
-117 Need the private key.
-118 Error during RSA private operation.
-119 Server missing DH parameters.
-120 Build message failure.
-121 Client hello not formed correctly.
-122 The peer subject name mismatch.
-123 Non-blocking socket wants data to be read.
-124 Handshake layer not ready yet; complete first.
-125 Premaster secret version mismatch error.
-126 Record layer version error.
-127 Non-blocking socket write buffer full.
-128 Malformed buffer input error.
-129 Verify problem on certificate and check date/time on your device.
-130 Verify problem based on signature.
-131 PSK client identity error.
-132 PSK server hint error.
-133 PSK key callback error.
-134 Record layer length error.
-135 Can’t decode peer key.
-136 The peer sent close notify alert.
-137 Wrong client/server type.
-138 The peer didn’t send the certificate.
-140 NTRU key error.
-141 NTRU DRBG error.
-142 NTRU encrypt error.
-143 NTRU decrypt error.
-150 Bad ECC Curve Type or unsupported.
-151 Bad ECC Curve or unsupported.
-152 Bad ECC Peer Key.
-153 ECC Make Key failure.
-154 ECC Export Key failure.
-155 ECC DHE shared failure.
-157 Not a CA by basic constraint.
-159 Bad Certificate Manager error.
-160 OCSP Certificate revoked.
-161 CRL Certificate revoked.
-162 CRL missing, not loaded.
-165 OCSP needs a URL for lookup.
-166 OCSP Certificate unknown.
-167 OCSP responder lookup fail.
-168 Maximum chain depth exceeded.
-171 Suites pointer error.
-172 No PEM header found.
-173 Out of order message: fatal.
-174 Bad KEY type found.
-175 Sanity check on ciphertext failed.
-176 Receive callback returned more than requested.
-178 Need peer certificate for verification.
-181 Unrecognized host name error.
-182 Unrecognized max fragment length.
-183 Key Use digitalSignature not set.
-185 Key Use keyEncipherment not set.
-186 Ext Key Use server/client authentication not set.
-187 Send callback out-of-bounds read error.
-188 Invalid renegotiation.
-189 Peer sent different certificate during SCR.
-190 Finished message received from peer before receiving the Change Cipher message.
-191 Sanity check on message order.
-192 Duplicate handshake message.
-193 Unsupported cipher suite.
-194 Can’t match cipher suite.
-195 Bad certificate type.
-196 Bad file type.
-197 Opening random device error.
-198 Reading random device error.
-199 Windows cryptographic init error.
-200 Windows cryptographic generation error.
-201 No data is waiting to be received from the random device.
-202 Unknown error.