Move client parsing of ServerHello extensions into new framework
[openssl.git] / ssl / ssl_err.c
1 /*
2  * Generated by util/mkerr.pl DO NOT EDIT
3  * Copyright 1995-2016 The OpenSSL Project Authors. All Rights Reserved.
4  *
5  * Licensed under the OpenSSL license (the "License").  You may not use
6  * this file except in compliance with the License.  You can obtain a copy
7  * in the file LICENSE in the source distribution or at
8  * https://www.openssl.org/source/license.html
9  */
10
11 #include <stdio.h>
12 #include <openssl/err.h>
13 #include <openssl/ssl.h>
14
15 /* BEGIN ERROR CODES */
16 #ifndef OPENSSL_NO_ERR
17
18 # define ERR_FUNC(func) ERR_PACK(ERR_LIB_SSL,func,0)
19 # define ERR_REASON(reason) ERR_PACK(ERR_LIB_SSL,0,reason)
20
21 static ERR_STRING_DATA SSL_str_functs[] = {
22     {ERR_FUNC(SSL_F_ADD_CLIENT_KEY_SHARE_EXT), "add_client_key_share_ext"},
23     {ERR_FUNC(SSL_F_CHECK_SUITEB_CIPHER_LIST), "check_suiteb_cipher_list"},
24     {ERR_FUNC(SSL_F_CT_MOVE_SCTS), "ct_move_scts"},
25     {ERR_FUNC(SSL_F_CT_STRICT), "ct_strict"},
26     {ERR_FUNC(SSL_F_D2I_SSL_SESSION), "d2i_SSL_SESSION"},
27     {ERR_FUNC(SSL_F_DANE_CTX_ENABLE), "dane_ctx_enable"},
28     {ERR_FUNC(SSL_F_DANE_MTYPE_SET), "dane_mtype_set"},
29     {ERR_FUNC(SSL_F_DANE_TLSA_ADD), "dane_tlsa_add"},
30     {ERR_FUNC(SSL_F_DO_DTLS1_WRITE), "do_dtls1_write"},
31     {ERR_FUNC(SSL_F_DO_SSL3_WRITE), "do_ssl3_write"},
32     {ERR_FUNC(SSL_F_DTLS1_BUFFER_RECORD), "dtls1_buffer_record"},
33     {ERR_FUNC(SSL_F_DTLS1_CHECK_TIMEOUT_NUM), "dtls1_check_timeout_num"},
34     {ERR_FUNC(SSL_F_DTLS1_HEARTBEAT), "dtls1_heartbeat"},
35     {ERR_FUNC(SSL_F_DTLS1_PREPROCESS_FRAGMENT), "dtls1_preprocess_fragment"},
36     {ERR_FUNC(SSL_F_DTLS1_PROCESS_BUFFERED_RECORDS),
37      "dtls1_process_buffered_records"},
38     {ERR_FUNC(SSL_F_DTLS1_PROCESS_RECORD), "dtls1_process_record"},
39     {ERR_FUNC(SSL_F_DTLS1_READ_BYTES), "dtls1_read_bytes"},
40     {ERR_FUNC(SSL_F_DTLS1_READ_FAILED), "dtls1_read_failed"},
41     {ERR_FUNC(SSL_F_DTLS1_RETRANSMIT_MESSAGE), "dtls1_retransmit_message"},
42     {ERR_FUNC(SSL_F_DTLS1_WRITE_APP_DATA_BYTES),
43      "dtls1_write_app_data_bytes"},
44     {ERR_FUNC(SSL_F_DTLSV1_LISTEN), "DTLSv1_listen"},
45     {ERR_FUNC(SSL_F_DTLS_CONSTRUCT_CHANGE_CIPHER_SPEC),
46      "dtls_construct_change_cipher_spec"},
47     {ERR_FUNC(SSL_F_DTLS_CONSTRUCT_HELLO_VERIFY_REQUEST),
48      "dtls_construct_hello_verify_request"},
49     {ERR_FUNC(SSL_F_DTLS_GET_REASSEMBLED_MESSAGE),
50      "dtls_get_reassembled_message"},
51     {ERR_FUNC(SSL_F_DTLS_PROCESS_HELLO_VERIFY), "dtls_process_hello_verify"},
52     {ERR_FUNC(SSL_F_OPENSSL_INIT_SSL), "OPENSSL_init_ssl"},
53     {ERR_FUNC(SSL_F_OSSL_STATEM_CLIENT13_READ_TRANSITION),
54      "ossl_statem_client13_read_transition"},
55     {ERR_FUNC(SSL_F_OSSL_STATEM_CLIENT_CONSTRUCT_MESSAGE),
56      "ossl_statem_client_construct_message"},
57     {ERR_FUNC(SSL_F_OSSL_STATEM_CLIENT_READ_TRANSITION),
58      "ossl_statem_client_read_transition"},
59     {ERR_FUNC(SSL_F_OSSL_STATEM_SERVER13_READ_TRANSITION),
60      "ossl_statem_server13_read_transition"},
61     {ERR_FUNC(SSL_F_OSSL_STATEM_SERVER_CONSTRUCT_MESSAGE),
62      "ossl_statem_server_construct_message"},
63     {ERR_FUNC(SSL_F_OSSL_STATEM_SERVER_READ_TRANSITION),
64      "ossl_statem_server_read_transition"},
65     {ERR_FUNC(SSL_F_PROCESS_KEY_SHARE_EXT), "process_key_share_ext"},
66     {ERR_FUNC(SSL_F_READ_STATE_MACHINE), "read_state_machine"},
67     {ERR_FUNC(SSL_F_SSL3_CHANGE_CIPHER_STATE), "ssl3_change_cipher_state"},
68     {ERR_FUNC(SSL_F_SSL3_CHECK_CERT_AND_ALGORITHM),
69      "ssl3_check_cert_and_algorithm"},
70     {ERR_FUNC(SSL_F_SSL3_CTRL), "ssl3_ctrl"},
71     {ERR_FUNC(SSL_F_SSL3_CTX_CTRL), "ssl3_ctx_ctrl"},
72     {ERR_FUNC(SSL_F_SSL3_DIGEST_CACHED_RECORDS),
73      "ssl3_digest_cached_records"},
74     {ERR_FUNC(SSL_F_SSL3_DO_CHANGE_CIPHER_SPEC),
75      "ssl3_do_change_cipher_spec"},
76     {ERR_FUNC(SSL_F_SSL3_FINAL_FINISH_MAC), "ssl3_final_finish_mac"},
77     {ERR_FUNC(SSL_F_SSL3_GENERATE_KEY_BLOCK), "ssl3_generate_key_block"},
78     {ERR_FUNC(SSL_F_SSL3_GENERATE_MASTER_SECRET),
79      "ssl3_generate_master_secret"},
80     {ERR_FUNC(SSL_F_SSL3_GET_RECORD), "ssl3_get_record"},
81     {ERR_FUNC(SSL_F_SSL3_INIT_FINISHED_MAC), "ssl3_init_finished_mac"},
82     {ERR_FUNC(SSL_F_SSL3_OUTPUT_CERT_CHAIN), "ssl3_output_cert_chain"},
83     {ERR_FUNC(SSL_F_SSL3_READ_BYTES), "ssl3_read_bytes"},
84     {ERR_FUNC(SSL_F_SSL3_READ_N), "ssl3_read_n"},
85     {ERR_FUNC(SSL_F_SSL3_SETUP_KEY_BLOCK), "ssl3_setup_key_block"},
86     {ERR_FUNC(SSL_F_SSL3_SETUP_READ_BUFFER), "ssl3_setup_read_buffer"},
87     {ERR_FUNC(SSL_F_SSL3_SETUP_WRITE_BUFFER), "ssl3_setup_write_buffer"},
88     {ERR_FUNC(SSL_F_SSL3_WRITE_BYTES), "ssl3_write_bytes"},
89     {ERR_FUNC(SSL_F_SSL3_WRITE_PENDING), "ssl3_write_pending"},
90     {ERR_FUNC(SSL_F_SSL_ADD_CERT_CHAIN), "ssl_add_cert_chain"},
91     {ERR_FUNC(SSL_F_SSL_ADD_CERT_TO_BUF), "ssl_add_cert_to_buf"},
92     {ERR_FUNC(SSL_F_SSL_ADD_CLIENTHELLO_RENEGOTIATE_EXT),
93      "ssl_add_clienthello_renegotiate_ext"},
94     {ERR_FUNC(SSL_F_SSL_ADD_CLIENTHELLO_TLSEXT),
95      "ssl_add_clienthello_tlsext"},
96     {ERR_FUNC(SSL_F_SSL_ADD_CLIENTHELLO_USE_SRTP_EXT),
97      "ssl_add_clienthello_use_srtp_ext"},
98     {ERR_FUNC(SSL_F_SSL_ADD_DIR_CERT_SUBJECTS_TO_STACK),
99      "SSL_add_dir_cert_subjects_to_stack"},
100     {ERR_FUNC(SSL_F_SSL_ADD_FILE_CERT_SUBJECTS_TO_STACK),
101      "SSL_add_file_cert_subjects_to_stack"},
102     {ERR_FUNC(SSL_F_SSL_ADD_SERVERHELLO_RENEGOTIATE_EXT),
103      "ssl_add_serverhello_renegotiate_ext"},
104     {ERR_FUNC(SSL_F_SSL_ADD_SERVERHELLO_TLSEXT),
105      "ssl_add_serverhello_tlsext"},
106     {ERR_FUNC(SSL_F_SSL_ADD_SERVERHELLO_USE_SRTP_EXT),
107      "ssl_add_serverhello_use_srtp_ext"},
108     {ERR_FUNC(SSL_F_SSL_BAD_METHOD), "ssl_bad_method"},
109     {ERR_FUNC(SSL_F_SSL_BUILD_CERT_CHAIN), "ssl_build_cert_chain"},
110     {ERR_FUNC(SSL_F_SSL_BYTES_TO_CIPHER_LIST), "ssl_bytes_to_cipher_list"},
111     {ERR_FUNC(SSL_F_SSL_CERT_ADD0_CHAIN_CERT), "ssl_cert_add0_chain_cert"},
112     {ERR_FUNC(SSL_F_SSL_CERT_DUP), "ssl_cert_dup"},
113     {ERR_FUNC(SSL_F_SSL_CERT_NEW), "ssl_cert_new"},
114     {ERR_FUNC(SSL_F_SSL_CERT_SET0_CHAIN), "ssl_cert_set0_chain"},
115     {ERR_FUNC(SSL_F_SSL_CHECK_PRIVATE_KEY), "SSL_check_private_key"},
116     {ERR_FUNC(SSL_F_SSL_CHECK_SERVERHELLO_TLSEXT),
117      "ssl_check_serverhello_tlsext"},
118     {ERR_FUNC(SSL_F_SSL_CHECK_SRVR_ECC_CERT_AND_ALG),
119      "ssl_check_srvr_ecc_cert_and_alg"},
120     {ERR_FUNC(SSL_F_SSL_CIPHER_LIST_TO_BYTES), "ssl_cipher_list_to_bytes"},
121     {ERR_FUNC(SSL_F_SSL_CIPHER_PROCESS_RULESTR),
122      "ssl_cipher_process_rulestr"},
123     {ERR_FUNC(SSL_F_SSL_CIPHER_STRENGTH_SORT), "ssl_cipher_strength_sort"},
124     {ERR_FUNC(SSL_F_SSL_CLEAR), "SSL_clear"},
125     {ERR_FUNC(SSL_F_SSL_COMP_ADD_COMPRESSION_METHOD),
126      "SSL_COMP_add_compression_method"},
127     {ERR_FUNC(SSL_F_SSL_CONF_CMD), "SSL_CONF_cmd"},
128     {ERR_FUNC(SSL_F_SSL_CREATE_CIPHER_LIST), "ssl_create_cipher_list"},
129     {ERR_FUNC(SSL_F_SSL_CTRL), "SSL_ctrl"},
130     {ERR_FUNC(SSL_F_SSL_CTX_CHECK_PRIVATE_KEY), "SSL_CTX_check_private_key"},
131     {ERR_FUNC(SSL_F_SSL_CTX_ENABLE_CT), "SSL_CTX_enable_ct"},
132     {ERR_FUNC(SSL_F_SSL_CTX_MAKE_PROFILES), "ssl_ctx_make_profiles"},
133     {ERR_FUNC(SSL_F_SSL_CTX_NEW), "SSL_CTX_new"},
134     {ERR_FUNC(SSL_F_SSL_CTX_SET_ALPN_PROTOS), "SSL_CTX_set_alpn_protos"},
135     {ERR_FUNC(SSL_F_SSL_CTX_SET_CIPHER_LIST), "SSL_CTX_set_cipher_list"},
136     {ERR_FUNC(SSL_F_SSL_CTX_SET_CLIENT_CERT_ENGINE),
137      "SSL_CTX_set_client_cert_engine"},
138     {ERR_FUNC(SSL_F_SSL_CTX_SET_CT_VALIDATION_CALLBACK),
139      "SSL_CTX_set_ct_validation_callback"},
140     {ERR_FUNC(SSL_F_SSL_CTX_SET_SESSION_ID_CONTEXT),
141      "SSL_CTX_set_session_id_context"},
142     {ERR_FUNC(SSL_F_SSL_CTX_SET_SSL_VERSION), "SSL_CTX_set_ssl_version"},
143     {ERR_FUNC(SSL_F_SSL_CTX_USE_CERTIFICATE), "SSL_CTX_use_certificate"},
144     {ERR_FUNC(SSL_F_SSL_CTX_USE_CERTIFICATE_ASN1),
145      "SSL_CTX_use_certificate_ASN1"},
146     {ERR_FUNC(SSL_F_SSL_CTX_USE_CERTIFICATE_FILE),
147      "SSL_CTX_use_certificate_file"},
148     {ERR_FUNC(SSL_F_SSL_CTX_USE_PRIVATEKEY), "SSL_CTX_use_PrivateKey"},
149     {ERR_FUNC(SSL_F_SSL_CTX_USE_PRIVATEKEY_ASN1),
150      "SSL_CTX_use_PrivateKey_ASN1"},
151     {ERR_FUNC(SSL_F_SSL_CTX_USE_PRIVATEKEY_FILE),
152      "SSL_CTX_use_PrivateKey_file"},
153     {ERR_FUNC(SSL_F_SSL_CTX_USE_PSK_IDENTITY_HINT),
154      "SSL_CTX_use_psk_identity_hint"},
155     {ERR_FUNC(SSL_F_SSL_CTX_USE_RSAPRIVATEKEY), "SSL_CTX_use_RSAPrivateKey"},
156     {ERR_FUNC(SSL_F_SSL_CTX_USE_RSAPRIVATEKEY_ASN1),
157      "SSL_CTX_use_RSAPrivateKey_ASN1"},
158     {ERR_FUNC(SSL_F_SSL_CTX_USE_RSAPRIVATEKEY_FILE),
159      "SSL_CTX_use_RSAPrivateKey_file"},
160     {ERR_FUNC(SSL_F_SSL_CTX_USE_SERVERINFO), "SSL_CTX_use_serverinfo"},
161     {ERR_FUNC(SSL_F_SSL_CTX_USE_SERVERINFO_FILE),
162      "SSL_CTX_use_serverinfo_file"},
163     {ERR_FUNC(SSL_F_SSL_DANE_DUP), "ssl_dane_dup"},
164     {ERR_FUNC(SSL_F_SSL_DANE_ENABLE), "SSL_dane_enable"},
165     {ERR_FUNC(SSL_F_SSL_DO_CONFIG), "ssl_do_config"},
166     {ERR_FUNC(SSL_F_SSL_DO_HANDSHAKE), "SSL_do_handshake"},
167     {ERR_FUNC(SSL_F_SSL_DUP_CA_LIST), "SSL_dup_CA_list"},
168     {ERR_FUNC(SSL_F_SSL_ENABLE_CT), "SSL_enable_ct"},
169     {ERR_FUNC(SSL_F_SSL_GET_NEW_SESSION), "ssl_get_new_session"},
170     {ERR_FUNC(SSL_F_SSL_GET_PREV_SESSION), "ssl_get_prev_session"},
171     {ERR_FUNC(SSL_F_SSL_GET_SERVER_CERT_INDEX), "ssl_get_server_cert_index"},
172     {ERR_FUNC(SSL_F_SSL_GET_SIGN_PKEY), "ssl_get_sign_pkey"},
173     {ERR_FUNC(SSL_F_SSL_INIT_WBIO_BUFFER), "ssl_init_wbio_buffer"},
174     {ERR_FUNC(SSL_F_SSL_LOAD_CLIENT_CA_FILE), "SSL_load_client_CA_file"},
175     {ERR_FUNC(SSL_F_SSL_MODULE_INIT), "ssl_module_init"},
176     {ERR_FUNC(SSL_F_SSL_NEW), "SSL_new"},
177     {ERR_FUNC(SSL_F_SSL_PARSE_CLIENTHELLO_RENEGOTIATE_EXT),
178      "ssl_parse_clienthello_renegotiate_ext"},
179     {ERR_FUNC(SSL_F_SSL_PARSE_CLIENTHELLO_TLSEXT),
180      "ssl_parse_clienthello_tlsext"},
181     {ERR_FUNC(SSL_F_SSL_PARSE_CLIENTHELLO_USE_SRTP_EXT),
182      "ssl_parse_clienthello_use_srtp_ext"},
183     {ERR_FUNC(SSL_F_SSL_PARSE_SERVERHELLO_RENEGOTIATE_EXT),
184      "ssl_parse_serverhello_renegotiate_ext"},
185     {ERR_FUNC(SSL_F_SSL_PARSE_SERVERHELLO_TLSEXT),
186      "ssl_parse_serverhello_tlsext"},
187     {ERR_FUNC(SSL_F_SSL_PARSE_SERVERHELLO_USE_SRTP_EXT),
188      "ssl_parse_serverhello_use_srtp_ext"},
189     {ERR_FUNC(SSL_F_SSL_PEEK), "SSL_peek"},
190     {ERR_FUNC(SSL_F_SSL_PEEK_EX), "SSL_peek_ex"},
191     {ERR_FUNC(SSL_F_SSL_READ), "SSL_read"},
192     {ERR_FUNC(SSL_F_SSL_READ_EX), "SSL_read_ex"},
193     {ERR_FUNC(SSL_F_SSL_SCAN_CLIENTHELLO_TLSEXT),
194      "ssl_scan_clienthello_tlsext"},
195     {ERR_FUNC(SSL_F_SSL_SCAN_SERVERHELLO_TLSEXT),
196      "ssl_scan_serverhello_tlsext"},
197     {ERR_FUNC(SSL_F_SSL_SESSION_DUP), "ssl_session_dup"},
198     {ERR_FUNC(SSL_F_SSL_SESSION_NEW), "SSL_SESSION_new"},
199     {ERR_FUNC(SSL_F_SSL_SESSION_PRINT_FP), "SSL_SESSION_print_fp"},
200     {ERR_FUNC(SSL_F_SSL_SESSION_SET1_ID), "SSL_SESSION_set1_id"},
201     {ERR_FUNC(SSL_F_SSL_SESSION_SET1_ID_CONTEXT),
202      "SSL_SESSION_set1_id_context"},
203     {ERR_FUNC(SSL_F_SSL_SET_ALPN_PROTOS), "SSL_set_alpn_protos"},
204     {ERR_FUNC(SSL_F_SSL_SET_CERT), "ssl_set_cert"},
205     {ERR_FUNC(SSL_F_SSL_SET_CIPHER_LIST), "SSL_set_cipher_list"},
206     {ERR_FUNC(SSL_F_SSL_SET_CT_VALIDATION_CALLBACK),
207      "SSL_set_ct_validation_callback"},
208     {ERR_FUNC(SSL_F_SSL_SET_FD), "SSL_set_fd"},
209     {ERR_FUNC(SSL_F_SSL_SET_PKEY), "ssl_set_pkey"},
210     {ERR_FUNC(SSL_F_SSL_SET_RFD), "SSL_set_rfd"},
211     {ERR_FUNC(SSL_F_SSL_SET_SESSION), "SSL_set_session"},
212     {ERR_FUNC(SSL_F_SSL_SET_SESSION_ID_CONTEXT),
213      "SSL_set_session_id_context"},
214     {ERR_FUNC(SSL_F_SSL_SET_SESSION_TICKET_EXT),
215      "SSL_set_session_ticket_ext"},
216     {ERR_FUNC(SSL_F_SSL_SET_WFD), "SSL_set_wfd"},
217     {ERR_FUNC(SSL_F_SSL_SHUTDOWN), "SSL_shutdown"},
218     {ERR_FUNC(SSL_F_SSL_SRP_CTX_INIT), "SSL_SRP_CTX_init"},
219     {ERR_FUNC(SSL_F_SSL_START_ASYNC_JOB), "ssl_start_async_job"},
220     {ERR_FUNC(SSL_F_SSL_UNDEFINED_FUNCTION), "ssl_undefined_function"},
221     {ERR_FUNC(SSL_F_SSL_UNDEFINED_VOID_FUNCTION),
222      "ssl_undefined_void_function"},
223     {ERR_FUNC(SSL_F_SSL_USE_CERTIFICATE), "SSL_use_certificate"},
224     {ERR_FUNC(SSL_F_SSL_USE_CERTIFICATE_ASN1), "SSL_use_certificate_ASN1"},
225     {ERR_FUNC(SSL_F_SSL_USE_CERTIFICATE_FILE), "SSL_use_certificate_file"},
226     {ERR_FUNC(SSL_F_SSL_USE_PRIVATEKEY), "SSL_use_PrivateKey"},
227     {ERR_FUNC(SSL_F_SSL_USE_PRIVATEKEY_ASN1), "SSL_use_PrivateKey_ASN1"},
228     {ERR_FUNC(SSL_F_SSL_USE_PRIVATEKEY_FILE), "SSL_use_PrivateKey_file"},
229     {ERR_FUNC(SSL_F_SSL_USE_PSK_IDENTITY_HINT), "SSL_use_psk_identity_hint"},
230     {ERR_FUNC(SSL_F_SSL_USE_RSAPRIVATEKEY), "SSL_use_RSAPrivateKey"},
231     {ERR_FUNC(SSL_F_SSL_USE_RSAPRIVATEKEY_ASN1),
232      "SSL_use_RSAPrivateKey_ASN1"},
233     {ERR_FUNC(SSL_F_SSL_USE_RSAPRIVATEKEY_FILE),
234      "SSL_use_RSAPrivateKey_file"},
235     {ERR_FUNC(SSL_F_SSL_VALIDATE_CT), "ssl_validate_ct"},
236     {ERR_FUNC(SSL_F_SSL_VERIFY_CERT_CHAIN), "ssl_verify_cert_chain"},
237     {ERR_FUNC(SSL_F_SSL_WRITE), "SSL_write"},
238     {ERR_FUNC(SSL_F_SSL_WRITE_EX), "SSL_write_ex"},
239     {ERR_FUNC(SSL_F_STATE_MACHINE), "state_machine"},
240     {ERR_FUNC(SSL_F_TLS12_CHECK_PEER_SIGALG), "tls12_check_peer_sigalg"},
241     {ERR_FUNC(SSL_F_TLS13_CHANGE_CIPHER_STATE), "tls13_change_cipher_state"},
242     {ERR_FUNC(SSL_F_TLS13_SETUP_KEY_BLOCK), "tls13_setup_key_block"},
243     {ERR_FUNC(SSL_F_TLS1_CHANGE_CIPHER_STATE), "tls1_change_cipher_state"},
244     {ERR_FUNC(SSL_F_TLS1_CHECK_DUPLICATE_EXTENSIONS),
245      "tls1_check_duplicate_extensions"},
246     {ERR_FUNC(SSL_F_TLS1_ENC), "tls1_enc"},
247     {ERR_FUNC(SSL_F_TLS1_EXPORT_KEYING_MATERIAL),
248      "tls1_export_keying_material"},
249     {ERR_FUNC(SSL_F_TLS1_GET_CURVELIST), "tls1_get_curvelist"},
250     {ERR_FUNC(SSL_F_TLS1_PRF), "tls1_PRF"},
251     {ERR_FUNC(SSL_F_TLS1_SETUP_KEY_BLOCK), "tls1_setup_key_block"},
252     {ERR_FUNC(SSL_F_TLS1_SET_SERVER_SIGALGS), "tls1_set_server_sigalgs"},
253     {ERR_FUNC(SSL_F_TLS_CLIENT_KEY_EXCHANGE_POST_WORK),
254      "tls_client_key_exchange_post_work"},
255     {ERR_FUNC(SSL_F_TLS_COLLECT_EXTENSIONS), "tls_collect_extensions"},
256     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_CERTIFICATE_REQUEST),
257      "tls_construct_certificate_request"},
258     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_CERT_STATUS), "tls_construct_cert_status"},
259     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_CHANGE_CIPHER_SPEC),
260      "tls_construct_change_cipher_spec"},
261     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_CKE_DHE), "tls_construct_cke_dhe"},
262     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_CKE_ECDHE), "tls_construct_cke_ecdhe"},
263     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_CKE_GOST), "tls_construct_cke_gost"},
264     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_CKE_PSK_PREAMBLE),
265      "tls_construct_cke_psk_preamble"},
266     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_CKE_RSA), "tls_construct_cke_rsa"},
267     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_CKE_SRP), "tls_construct_cke_srp"},
268     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_CLIENT_CERTIFICATE),
269      "tls_construct_client_certificate"},
270     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_CLIENT_HELLO),
271      "tls_construct_client_hello"},
272     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_CLIENT_KEY_EXCHANGE),
273      "tls_construct_client_key_exchange"},
274     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_CLIENT_VERIFY),
275      "tls_construct_client_verify"},
276     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_ENCRYPTED_EXTENSIONS),
277      "tls_construct_encrypted_extensions"},
278     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_EXTENSIONS), "tls_construct_extensions"},
279     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_FINISHED), "tls_construct_finished"},
280     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_HELLO_REQUEST),
281      "tls_construct_hello_request"},
282     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_NEW_SESSION_TICKET),
283      "tls_construct_new_session_ticket"},
284     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_NEXT_PROTO), "tls_construct_next_proto"},
285     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_SERVER_ALPN), "tls_construct_server_alpn"},
286     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_SERVER_CERTIFICATE),
287      "tls_construct_server_certificate"},
288     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_SERVER_CRYPTOPRO_BUG),
289      "tls_construct_server_cryptopro_bug"},
290     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_SERVER_DONE), "tls_construct_server_done"},
291     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_SERVER_EC_PT_FORMATS),
292      "tls_construct_server_ec_pt_formats"},
293     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_SERVER_EMS), "tls_construct_server_ems"},
294     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_SERVER_ETM), "tls_construct_server_etm"},
295     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_SERVER_HELLO),
296      "tls_construct_server_hello"},
297     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_SERVER_KEY_EXCHANGE),
298      "tls_construct_server_key_exchange"},
299     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_SERVER_KEY_SHARE),
300      "tls_construct_server_key_share"},
301     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_SERVER_NEXT_PROTO_NEG),
302      "tls_construct_server_next_proto_neg"},
303     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_SERVER_RENEGOTIATE),
304      "tls_construct_server_renegotiate"},
305     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_SERVER_SERVER_NAME),
306      "tls_construct_server_server_name"},
307     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_SERVER_SESSION_TICKET),
308      "tls_construct_server_session_ticket"},
309     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_SERVER_STATUS_REQUEST),
310      "tls_construct_server_status_request"},
311     {ERR_FUNC(SSL_F_TLS_CONSTRUCT_SERVER_USE_SRTP),
312      "tls_construct_server_use_srtp"},
313     {ERR_FUNC(SSL_F_TLS_GET_MESSAGE_BODY), "tls_get_message_body"},
314     {ERR_FUNC(SSL_F_TLS_GET_MESSAGE_HEADER), "tls_get_message_header"},
315     {ERR_FUNC(SSL_F_TLS_PARSE_CLIENTHELLO_TLSEXT),
316      "tls_parse_clienthello_tlsext"},
317     {ERR_FUNC(SSL_F_TLS_PARSE_CLIENT_KEY_SHARE),
318      "tls_parse_client_key_share"},
319     {ERR_FUNC(SSL_F_TLS_PARSE_CLIENT_RENEGOTIATE),
320      "tls_parse_client_renegotiate"},
321     {ERR_FUNC(SSL_F_TLS_PARSE_CLIENT_USE_SRTP), "tls_parse_client_use_srtp"},
322     {ERR_FUNC(SSL_F_TLS_PARSE_SERVER_KEY_SHARE),
323      "tls_parse_server_key_share"},
324     {ERR_FUNC(SSL_F_TLS_PARSE_SERVER_RENEGOTIATE),
325      "tls_parse_server_renegotiate"},
326     {ERR_FUNC(SSL_F_TLS_PARSE_SERVER_USE_SRTP), "tls_parse_server_use_srtp"},
327     {ERR_FUNC(SSL_F_TLS_POST_PROCESS_CLIENT_HELLO),
328      "tls_post_process_client_hello"},
329     {ERR_FUNC(SSL_F_TLS_POST_PROCESS_CLIENT_KEY_EXCHANGE),
330      "tls_post_process_client_key_exchange"},
331     {ERR_FUNC(SSL_F_TLS_PREPARE_CLIENT_CERTIFICATE),
332      "tls_prepare_client_certificate"},
333     {ERR_FUNC(SSL_F_TLS_PROCESS_CERTIFICATE_REQUEST),
334      "tls_process_certificate_request"},
335     {ERR_FUNC(SSL_F_TLS_PROCESS_CERT_STATUS), "tls_process_cert_status"},
336     {ERR_FUNC(SSL_F_TLS_PROCESS_CERT_VERIFY), "tls_process_cert_verify"},
337     {ERR_FUNC(SSL_F_TLS_PROCESS_CHANGE_CIPHER_SPEC),
338      "tls_process_change_cipher_spec"},
339     {ERR_FUNC(SSL_F_TLS_PROCESS_CKE_DHE), "tls_process_cke_dhe"},
340     {ERR_FUNC(SSL_F_TLS_PROCESS_CKE_ECDHE), "tls_process_cke_ecdhe"},
341     {ERR_FUNC(SSL_F_TLS_PROCESS_CKE_GOST), "tls_process_cke_gost"},
342     {ERR_FUNC(SSL_F_TLS_PROCESS_CKE_PSK_PREAMBLE),
343      "tls_process_cke_psk_preamble"},
344     {ERR_FUNC(SSL_F_TLS_PROCESS_CKE_RSA), "tls_process_cke_rsa"},
345     {ERR_FUNC(SSL_F_TLS_PROCESS_CKE_SRP), "tls_process_cke_srp"},
346     {ERR_FUNC(SSL_F_TLS_PROCESS_CLIENT_CERTIFICATE),
347      "tls_process_client_certificate"},
348     {ERR_FUNC(SSL_F_TLS_PROCESS_CLIENT_HELLO), "tls_process_client_hello"},
349     {ERR_FUNC(SSL_F_TLS_PROCESS_CLIENT_KEY_EXCHANGE),
350      "tls_process_client_key_exchange"},
351     {ERR_FUNC(SSL_F_TLS_PROCESS_ENCRYPTED_EXTENSIONS),
352      "tls_process_encrypted_extensions"},
353     {ERR_FUNC(SSL_F_TLS_PROCESS_FINISHED), "tls_process_finished"},
354     {ERR_FUNC(SSL_F_TLS_PROCESS_INITIAL_SERVER_FLIGHT),
355      "tls_process_initial_server_flight"},
356     {ERR_FUNC(SSL_F_TLS_PROCESS_KEY_EXCHANGE), "tls_process_key_exchange"},
357     {ERR_FUNC(SSL_F_TLS_PROCESS_NEW_SESSION_TICKET),
358      "tls_process_new_session_ticket"},
359     {ERR_FUNC(SSL_F_TLS_PROCESS_NEXT_PROTO), "tls_process_next_proto"},
360     {ERR_FUNC(SSL_F_TLS_PROCESS_SERVER_CERTIFICATE),
361      "tls_process_server_certificate"},
362     {ERR_FUNC(SSL_F_TLS_PROCESS_SERVER_DONE), "tls_process_server_done"},
363     {ERR_FUNC(SSL_F_TLS_PROCESS_SERVER_HELLO), "tls_process_server_hello"},
364     {ERR_FUNC(SSL_F_TLS_PROCESS_SKE_DHE), "tls_process_ske_dhe"},
365     {ERR_FUNC(SSL_F_TLS_PROCESS_SKE_ECDHE), "tls_process_ske_ecdhe"},
366     {ERR_FUNC(SSL_F_TLS_PROCESS_SKE_PSK_PREAMBLE),
367      "tls_process_ske_psk_preamble"},
368     {ERR_FUNC(SSL_F_TLS_PROCESS_SKE_SRP), "tls_process_ske_srp"},
369     {ERR_FUNC(SSL_F_TLS_SCAN_CLIENTHELLO_TLSEXT),
370      "tls_scan_clienthello_tlsext"},
371     {ERR_FUNC(SSL_F_USE_CERTIFICATE_CHAIN_FILE),
372      "use_certificate_chain_file"},
373     {0, NULL}
374 };
375
376 static ERR_STRING_DATA SSL_str_reasons[] = {
377     {ERR_REASON(SSL_R_APP_DATA_IN_HANDSHAKE), "app data in handshake"},
378     {ERR_REASON(SSL_R_ATTEMPT_TO_REUSE_SESSION_IN_DIFFERENT_CONTEXT),
379      "attempt to reuse session in different context"},
380     {ERR_REASON(SSL_R_AT_LEAST_TLS_1_0_NEEDED_IN_FIPS_MODE),
381      "at least TLS 1.0 needed in FIPS mode"},
382     {ERR_REASON(SSL_R_AT_LEAST_TLS_1_2_NEEDED_IN_SUITEB_MODE),
383      "at least (D)TLS 1.2 needed in Suite B mode"},
384     {ERR_REASON(SSL_R_BAD_CHANGE_CIPHER_SPEC), "bad change cipher spec"},
385     {ERR_REASON(SSL_R_BAD_DATA), "bad data"},
386     {ERR_REASON(SSL_R_BAD_DATA_RETURNED_BY_CALLBACK),
387      "bad data returned by callback"},
388     {ERR_REASON(SSL_R_BAD_DECOMPRESSION), "bad decompression"},
389     {ERR_REASON(SSL_R_BAD_DH_VALUE), "bad dh value"},
390     {ERR_REASON(SSL_R_BAD_DIGEST_LENGTH), "bad digest length"},
391     {ERR_REASON(SSL_R_BAD_ECC_CERT), "bad ecc cert"},
392     {ERR_REASON(SSL_R_BAD_ECPOINT), "bad ecpoint"},
393     {ERR_REASON(SSL_R_BAD_EXTENSION), "bad extension"},
394     {ERR_REASON(SSL_R_BAD_HANDSHAKE_LENGTH), "bad handshake length"},
395     {ERR_REASON(SSL_R_BAD_HELLO_REQUEST), "bad hello request"},
396     {ERR_REASON(SSL_R_BAD_KEY_SHARE), "bad key share"},
397     {ERR_REASON(SSL_R_BAD_LENGTH), "bad length"},
398     {ERR_REASON(SSL_R_BAD_PACKET_LENGTH), "bad packet length"},
399     {ERR_REASON(SSL_R_BAD_PROTOCOL_VERSION_NUMBER),
400      "bad protocol version number"},
401     {ERR_REASON(SSL_R_BAD_RECORD_TYPE), "bad record type"},
402     {ERR_REASON(SSL_R_BAD_RSA_ENCRYPT), "bad rsa encrypt"},
403     {ERR_REASON(SSL_R_BAD_SIGNATURE), "bad signature"},
404     {ERR_REASON(SSL_R_BAD_SRP_A_LENGTH), "bad srp a length"},
405     {ERR_REASON(SSL_R_BAD_SRP_PARAMETERS), "bad srp parameters"},
406     {ERR_REASON(SSL_R_BAD_SRTP_MKI_VALUE), "bad srtp mki value"},
407     {ERR_REASON(SSL_R_BAD_SRTP_PROTECTION_PROFILE_LIST),
408      "bad srtp protection profile list"},
409     {ERR_REASON(SSL_R_BAD_SSL_FILETYPE), "bad ssl filetype"},
410     {ERR_REASON(SSL_R_BAD_VALUE), "bad value"},
411     {ERR_REASON(SSL_R_BAD_WRITE_RETRY), "bad write retry"},
412     {ERR_REASON(SSL_R_BIO_NOT_SET), "bio not set"},
413     {ERR_REASON(SSL_R_BLOCK_CIPHER_PAD_IS_WRONG),
414      "block cipher pad is wrong"},
415     {ERR_REASON(SSL_R_BN_LIB), "bn lib"},
416     {ERR_REASON(SSL_R_CANNOT_CHANGE_CIPHER), "cannot change cipher"},
417     {ERR_REASON(SSL_R_CA_DN_LENGTH_MISMATCH), "ca dn length mismatch"},
418     {ERR_REASON(SSL_R_CA_KEY_TOO_SMALL), "ca key too small"},
419     {ERR_REASON(SSL_R_CA_MD_TOO_WEAK), "ca md too weak"},
420     {ERR_REASON(SSL_R_CCS_RECEIVED_EARLY), "ccs received early"},
421     {ERR_REASON(SSL_R_CERTIFICATE_VERIFY_FAILED),
422      "certificate verify failed"},
423     {ERR_REASON(SSL_R_CERT_CB_ERROR), "cert cb error"},
424     {ERR_REASON(SSL_R_CERT_LENGTH_MISMATCH), "cert length mismatch"},
425     {ERR_REASON(SSL_R_CIPHER_CODE_WRONG_LENGTH), "cipher code wrong length"},
426     {ERR_REASON(SSL_R_CIPHER_OR_HASH_UNAVAILABLE),
427      "cipher or hash unavailable"},
428     {ERR_REASON(SSL_R_CLIENTHELLO_TLSEXT), "clienthello tlsext"},
429     {ERR_REASON(SSL_R_COMPRESSED_LENGTH_TOO_LONG),
430      "compressed length too long"},
431     {ERR_REASON(SSL_R_COMPRESSION_DISABLED), "compression disabled"},
432     {ERR_REASON(SSL_R_COMPRESSION_FAILURE), "compression failure"},
433     {ERR_REASON(SSL_R_COMPRESSION_ID_NOT_WITHIN_PRIVATE_RANGE),
434      "compression id not within private range"},
435     {ERR_REASON(SSL_R_COMPRESSION_LIBRARY_ERROR),
436      "compression library error"},
437     {ERR_REASON(SSL_R_CONNECTION_TYPE_NOT_SET), "connection type not set"},
438     {ERR_REASON(SSL_R_CONTEXT_NOT_DANE_ENABLED), "context not dane enabled"},
439     {ERR_REASON(SSL_R_COOKIE_GEN_CALLBACK_FAILURE),
440      "cookie gen callback failure"},
441     {ERR_REASON(SSL_R_COOKIE_MISMATCH), "cookie mismatch"},
442     {ERR_REASON(SSL_R_CUSTOM_EXT_HANDLER_ALREADY_INSTALLED),
443      "custom ext handler already installed"},
444     {ERR_REASON(SSL_R_DANE_ALREADY_ENABLED), "dane already enabled"},
445     {ERR_REASON(SSL_R_DANE_CANNOT_OVERRIDE_MTYPE_FULL),
446      "dane cannot override mtype full"},
447     {ERR_REASON(SSL_R_DANE_NOT_ENABLED), "dane not enabled"},
448     {ERR_REASON(SSL_R_DANE_TLSA_BAD_CERTIFICATE),
449      "dane tlsa bad certificate"},
450     {ERR_REASON(SSL_R_DANE_TLSA_BAD_CERTIFICATE_USAGE),
451      "dane tlsa bad certificate usage"},
452     {ERR_REASON(SSL_R_DANE_TLSA_BAD_DATA_LENGTH),
453      "dane tlsa bad data length"},
454     {ERR_REASON(SSL_R_DANE_TLSA_BAD_DIGEST_LENGTH),
455      "dane tlsa bad digest length"},
456     {ERR_REASON(SSL_R_DANE_TLSA_BAD_MATCHING_TYPE),
457      "dane tlsa bad matching type"},
458     {ERR_REASON(SSL_R_DANE_TLSA_BAD_PUBLIC_KEY), "dane tlsa bad public key"},
459     {ERR_REASON(SSL_R_DANE_TLSA_BAD_SELECTOR), "dane tlsa bad selector"},
460     {ERR_REASON(SSL_R_DANE_TLSA_NULL_DATA), "dane tlsa null data"},
461     {ERR_REASON(SSL_R_DATA_BETWEEN_CCS_AND_FINISHED),
462      "data between ccs and finished"},
463     {ERR_REASON(SSL_R_DATA_LENGTH_TOO_LONG), "data length too long"},
464     {ERR_REASON(SSL_R_DECRYPTION_FAILED), "decryption failed"},
465     {ERR_REASON(SSL_R_DECRYPTION_FAILED_OR_BAD_RECORD_MAC),
466      "decryption failed or bad record mac"},
467     {ERR_REASON(SSL_R_DH_KEY_TOO_SMALL), "dh key too small"},
468     {ERR_REASON(SSL_R_DH_PUBLIC_VALUE_LENGTH_IS_WRONG),
469      "dh public value length is wrong"},
470     {ERR_REASON(SSL_R_DIGEST_CHECK_FAILED), "digest check failed"},
471     {ERR_REASON(SSL_R_DTLS_MESSAGE_TOO_BIG), "dtls message too big"},
472     {ERR_REASON(SSL_R_DUPLICATE_COMPRESSION_ID), "duplicate compression id"},
473     {ERR_REASON(SSL_R_ECC_CERT_NOT_FOR_SIGNING), "ecc cert not for signing"},
474     {ERR_REASON(SSL_R_ECDH_REQUIRED_FOR_SUITEB_MODE),
475      "ecdh required for suiteb mode"},
476     {ERR_REASON(SSL_R_EE_KEY_TOO_SMALL), "ee key too small"},
477     {ERR_REASON(SSL_R_EMPTY_SRTP_PROTECTION_PROFILE_LIST),
478      "empty srtp protection profile list"},
479     {ERR_REASON(SSL_R_ENCRYPTED_LENGTH_TOO_LONG),
480      "encrypted length too long"},
481     {ERR_REASON(SSL_R_ERROR_IN_RECEIVED_CIPHER_LIST),
482      "error in received cipher list"},
483     {ERR_REASON(SSL_R_ERROR_SETTING_TLSA_BASE_DOMAIN),
484      "error setting tlsa base domain"},
485     {ERR_REASON(SSL_R_EXCESSIVE_MESSAGE_SIZE), "excessive message size"},
486     {ERR_REASON(SSL_R_EXTRA_DATA_IN_MESSAGE), "extra data in message"},
487     {ERR_REASON(SSL_R_FAILED_TO_INIT_ASYNC), "failed to init async"},
488     {ERR_REASON(SSL_R_FRAGMENTED_CLIENT_HELLO), "fragmented client hello"},
489     {ERR_REASON(SSL_R_GOT_A_FIN_BEFORE_A_CCS), "got a fin before a ccs"},
490     {ERR_REASON(SSL_R_HTTPS_PROXY_REQUEST), "https proxy request"},
491     {ERR_REASON(SSL_R_HTTP_REQUEST), "http request"},
492     {ERR_REASON(SSL_R_ILLEGAL_SUITEB_DIGEST), "illegal Suite B digest"},
493     {ERR_REASON(SSL_R_INAPPROPRIATE_FALLBACK), "inappropriate fallback"},
494     {ERR_REASON(SSL_R_INCONSISTENT_COMPRESSION), "inconsistent compression"},
495     {ERR_REASON(SSL_R_INCONSISTENT_EXTMS), "inconsistent extms"},
496     {ERR_REASON(SSL_R_INVALID_COMMAND), "invalid command"},
497     {ERR_REASON(SSL_R_INVALID_COMPRESSION_ALGORITHM),
498      "invalid compression algorithm"},
499     {ERR_REASON(SSL_R_INVALID_CONFIGURATION_NAME),
500      "invalid configuration name"},
501     {ERR_REASON(SSL_R_INVALID_CT_VALIDATION_TYPE),
502      "invalid ct validation type"},
503     {ERR_REASON(SSL_R_INVALID_NULL_CMD_NAME), "invalid null cmd name"},
504     {ERR_REASON(SSL_R_INVALID_SEQUENCE_NUMBER), "invalid sequence number"},
505     {ERR_REASON(SSL_R_INVALID_SERVERINFO_DATA), "invalid serverinfo data"},
506     {ERR_REASON(SSL_R_INVALID_SRP_USERNAME), "invalid srp username"},
507     {ERR_REASON(SSL_R_INVALID_STATUS_RESPONSE), "invalid status response"},
508     {ERR_REASON(SSL_R_INVALID_TICKET_KEYS_LENGTH),
509      "invalid ticket keys length"},
510     {ERR_REASON(SSL_R_LENGTH_MISMATCH), "length mismatch"},
511     {ERR_REASON(SSL_R_LENGTH_TOO_LONG), "length too long"},
512     {ERR_REASON(SSL_R_LENGTH_TOO_SHORT), "length too short"},
513     {ERR_REASON(SSL_R_LIBRARY_BUG), "library bug"},
514     {ERR_REASON(SSL_R_LIBRARY_HAS_NO_CIPHERS), "library has no ciphers"},
515     {ERR_REASON(SSL_R_MISSING_DSA_SIGNING_CERT), "missing dsa signing cert"},
516     {ERR_REASON(SSL_R_MISSING_ECDSA_SIGNING_CERT),
517      "missing ecdsa signing cert"},
518     {ERR_REASON(SSL_R_MISSING_RSA_CERTIFICATE), "missing rsa certificate"},
519     {ERR_REASON(SSL_R_MISSING_RSA_ENCRYPTING_CERT),
520      "missing rsa encrypting cert"},
521     {ERR_REASON(SSL_R_MISSING_RSA_SIGNING_CERT), "missing rsa signing cert"},
522     {ERR_REASON(SSL_R_MISSING_SRP_PARAM), "can't find SRP server param"},
523     {ERR_REASON(SSL_R_MISSING_TMP_DH_KEY), "missing tmp dh key"},
524     {ERR_REASON(SSL_R_MISSING_TMP_ECDH_KEY), "missing tmp ecdh key"},
525     {ERR_REASON(SSL_R_NO_CERTIFICATES_RETURNED), "no certificates returned"},
526     {ERR_REASON(SSL_R_NO_CERTIFICATE_ASSIGNED), "no certificate assigned"},
527     {ERR_REASON(SSL_R_NO_CERTIFICATE_SET), "no certificate set"},
528     {ERR_REASON(SSL_R_NO_CIPHERS_AVAILABLE), "no ciphers available"},
529     {ERR_REASON(SSL_R_NO_CIPHERS_SPECIFIED), "no ciphers specified"},
530     {ERR_REASON(SSL_R_NO_CIPHER_MATCH), "no cipher match"},
531     {ERR_REASON(SSL_R_NO_CLIENT_CERT_METHOD), "no client cert method"},
532     {ERR_REASON(SSL_R_NO_COMPRESSION_SPECIFIED), "no compression specified"},
533     {ERR_REASON(SSL_R_NO_GOST_CERTIFICATE_SENT_BY_PEER),
534      "Peer haven't sent GOST certificate, required for selected ciphersuite"},
535     {ERR_REASON(SSL_R_NO_METHOD_SPECIFIED), "no method specified"},
536     {ERR_REASON(SSL_R_NO_PEM_EXTENSIONS), "no pem extensions"},
537     {ERR_REASON(SSL_R_NO_PRIVATE_KEY_ASSIGNED), "no private key assigned"},
538     {ERR_REASON(SSL_R_NO_PROTOCOLS_AVAILABLE), "no protocols available"},
539     {ERR_REASON(SSL_R_NO_RENEGOTIATION), "no renegotiation"},
540     {ERR_REASON(SSL_R_NO_REQUIRED_DIGEST), "no required digest"},
541     {ERR_REASON(SSL_R_NO_SHARED_CIPHER), "no shared cipher"},
542     {ERR_REASON(SSL_R_NO_SHARED_SIGNATURE_ALGORITHMS),
543      "no shared signature algorithms"},
544     {ERR_REASON(SSL_R_NO_SRTP_PROFILES), "no srtp profiles"},
545     {ERR_REASON(SSL_R_NO_SUITABLE_KEY_SHARE), "no suitable key share"},
546     {ERR_REASON(SSL_R_NO_VALID_SCTS), "no valid scts"},
547     {ERR_REASON(SSL_R_NO_VERIFY_COOKIE_CALLBACK),
548      "no verify cookie callback"},
549     {ERR_REASON(SSL_R_NULL_SSL_CTX), "null ssl ctx"},
550     {ERR_REASON(SSL_R_NULL_SSL_METHOD_PASSED), "null ssl method passed"},
551     {ERR_REASON(SSL_R_OLD_SESSION_CIPHER_NOT_RETURNED),
552      "old session cipher not returned"},
553     {ERR_REASON(SSL_R_OLD_SESSION_COMPRESSION_ALGORITHM_NOT_RETURNED),
554      "old session compression algorithm not returned"},
555     {ERR_REASON(SSL_R_PACKET_LENGTH_TOO_LONG), "packet length too long"},
556     {ERR_REASON(SSL_R_PARSE_TLSEXT), "parse tlsext"},
557     {ERR_REASON(SSL_R_PATH_TOO_LONG), "path too long"},
558     {ERR_REASON(SSL_R_PEER_DID_NOT_RETURN_A_CERTIFICATE),
559      "peer did not return a certificate"},
560     {ERR_REASON(SSL_R_PEM_NAME_BAD_PREFIX), "pem name bad prefix"},
561     {ERR_REASON(SSL_R_PEM_NAME_TOO_SHORT), "pem name too short"},
562     {ERR_REASON(SSL_R_PIPELINE_FAILURE), "pipeline failure"},
563     {ERR_REASON(SSL_R_PROTOCOL_IS_SHUTDOWN), "protocol is shutdown"},
564     {ERR_REASON(SSL_R_PSK_IDENTITY_NOT_FOUND), "psk identity not found"},
565     {ERR_REASON(SSL_R_PSK_NO_CLIENT_CB), "psk no client cb"},
566     {ERR_REASON(SSL_R_PSK_NO_SERVER_CB), "psk no server cb"},
567     {ERR_REASON(SSL_R_READ_BIO_NOT_SET), "read bio not set"},
568     {ERR_REASON(SSL_R_READ_TIMEOUT_EXPIRED), "read timeout expired"},
569     {ERR_REASON(SSL_R_RECORD_LENGTH_MISMATCH), "record length mismatch"},
570     {ERR_REASON(SSL_R_RECORD_TOO_SMALL), "record too small"},
571     {ERR_REASON(SSL_R_RENEGOTIATE_EXT_TOO_LONG), "renegotiate ext too long"},
572     {ERR_REASON(SSL_R_RENEGOTIATION_ENCODING_ERR),
573      "renegotiation encoding err"},
574     {ERR_REASON(SSL_R_RENEGOTIATION_MISMATCH), "renegotiation mismatch"},
575     {ERR_REASON(SSL_R_REQUIRED_CIPHER_MISSING), "required cipher missing"},
576     {ERR_REASON(SSL_R_REQUIRED_COMPRESSION_ALGORITHM_MISSING),
577      "required compression algorithm missing"},
578     {ERR_REASON(SSL_R_SCSV_RECEIVED_WHEN_RENEGOTIATING),
579      "scsv received when renegotiating"},
580     {ERR_REASON(SSL_R_SCT_VERIFICATION_FAILED), "sct verification failed"},
581     {ERR_REASON(SSL_R_SERVERHELLO_TLSEXT), "serverhello tlsext"},
582     {ERR_REASON(SSL_R_SESSION_ID_CONTEXT_UNINITIALIZED),
583      "session id context uninitialized"},
584     {ERR_REASON(SSL_R_SHUTDOWN_WHILE_IN_INIT), "shutdown while in init"},
585     {ERR_REASON(SSL_R_SIGNATURE_ALGORITHMS_ERROR),
586      "signature algorithms error"},
587     {ERR_REASON(SSL_R_SIGNATURE_FOR_NON_SIGNING_CERTIFICATE),
588      "signature for non signing certificate"},
589     {ERR_REASON(SSL_R_SRP_A_CALC), "error with the srp params"},
590     {ERR_REASON(SSL_R_SRTP_COULD_NOT_ALLOCATE_PROFILES),
591      "srtp could not allocate profiles"},
592     {ERR_REASON(SSL_R_SRTP_PROTECTION_PROFILE_LIST_TOO_LONG),
593      "srtp protection profile list too long"},
594     {ERR_REASON(SSL_R_SRTP_UNKNOWN_PROTECTION_PROFILE),
595      "srtp unknown protection profile"},
596     {ERR_REASON(SSL_R_SSL3_EXT_INVALID_SERVERNAME),
597      "ssl3 ext invalid servername"},
598     {ERR_REASON(SSL_R_SSL3_EXT_INVALID_SERVERNAME_TYPE),
599      "ssl3 ext invalid servername type"},
600     {ERR_REASON(SSL_R_SSL3_SESSION_ID_TOO_LONG), "ssl3 session id too long"},
601     {ERR_REASON(SSL_R_SSLV3_ALERT_BAD_CERTIFICATE),
602      "sslv3 alert bad certificate"},
603     {ERR_REASON(SSL_R_SSLV3_ALERT_BAD_RECORD_MAC),
604      "sslv3 alert bad record mac"},
605     {ERR_REASON(SSL_R_SSLV3_ALERT_CERTIFICATE_EXPIRED),
606      "sslv3 alert certificate expired"},
607     {ERR_REASON(SSL_R_SSLV3_ALERT_CERTIFICATE_REVOKED),
608      "sslv3 alert certificate revoked"},
609     {ERR_REASON(SSL_R_SSLV3_ALERT_CERTIFICATE_UNKNOWN),
610      "sslv3 alert certificate unknown"},
611     {ERR_REASON(SSL_R_SSLV3_ALERT_DECOMPRESSION_FAILURE),
612      "sslv3 alert decompression failure"},
613     {ERR_REASON(SSL_R_SSLV3_ALERT_HANDSHAKE_FAILURE),
614      "sslv3 alert handshake failure"},
615     {ERR_REASON(SSL_R_SSLV3_ALERT_ILLEGAL_PARAMETER),
616      "sslv3 alert illegal parameter"},
617     {ERR_REASON(SSL_R_SSLV3_ALERT_NO_CERTIFICATE),
618      "sslv3 alert no certificate"},
619     {ERR_REASON(SSL_R_SSLV3_ALERT_UNEXPECTED_MESSAGE),
620      "sslv3 alert unexpected message"},
621     {ERR_REASON(SSL_R_SSLV3_ALERT_UNSUPPORTED_CERTIFICATE),
622      "sslv3 alert unsupported certificate"},
623     {ERR_REASON(SSL_R_SSL_COMMAND_SECTION_EMPTY),
624      "ssl command section empty"},
625     {ERR_REASON(SSL_R_SSL_COMMAND_SECTION_NOT_FOUND),
626      "ssl command section not found"},
627     {ERR_REASON(SSL_R_SSL_CTX_HAS_NO_DEFAULT_SSL_VERSION),
628      "ssl ctx has no default ssl version"},
629     {ERR_REASON(SSL_R_SSL_HANDSHAKE_FAILURE), "ssl handshake failure"},
630     {ERR_REASON(SSL_R_SSL_LIBRARY_HAS_NO_CIPHERS),
631      "ssl library has no ciphers"},
632     {ERR_REASON(SSL_R_SSL_NEGATIVE_LENGTH), "ssl negative length"},
633     {ERR_REASON(SSL_R_SSL_SECTION_EMPTY), "ssl section empty"},
634     {ERR_REASON(SSL_R_SSL_SECTION_NOT_FOUND), "ssl section not found"},
635     {ERR_REASON(SSL_R_SSL_SESSION_ID_CALLBACK_FAILED),
636      "ssl session id callback failed"},
637     {ERR_REASON(SSL_R_SSL_SESSION_ID_CONFLICT), "ssl session id conflict"},
638     {ERR_REASON(SSL_R_SSL_SESSION_ID_CONTEXT_TOO_LONG),
639      "ssl session id context too long"},
640     {ERR_REASON(SSL_R_SSL_SESSION_ID_HAS_BAD_LENGTH),
641      "ssl session id has bad length"},
642     {ERR_REASON(SSL_R_SSL_SESSION_ID_TOO_LONG), "ssl session id too long"},
643     {ERR_REASON(SSL_R_SSL_SESSION_VERSION_MISMATCH),
644      "ssl session version mismatch"},
645     {ERR_REASON(SSL_R_TLSV1_ALERT_ACCESS_DENIED),
646      "tlsv1 alert access denied"},
647     {ERR_REASON(SSL_R_TLSV1_ALERT_DECODE_ERROR), "tlsv1 alert decode error"},
648     {ERR_REASON(SSL_R_TLSV1_ALERT_DECRYPTION_FAILED),
649      "tlsv1 alert decryption failed"},
650     {ERR_REASON(SSL_R_TLSV1_ALERT_DECRYPT_ERROR),
651      "tlsv1 alert decrypt error"},
652     {ERR_REASON(SSL_R_TLSV1_ALERT_EXPORT_RESTRICTION),
653      "tlsv1 alert export restriction"},
654     {ERR_REASON(SSL_R_TLSV1_ALERT_INAPPROPRIATE_FALLBACK),
655      "tlsv1 alert inappropriate fallback"},
656     {ERR_REASON(SSL_R_TLSV1_ALERT_INSUFFICIENT_SECURITY),
657      "tlsv1 alert insufficient security"},
658     {ERR_REASON(SSL_R_TLSV1_ALERT_INTERNAL_ERROR),
659      "tlsv1 alert internal error"},
660     {ERR_REASON(SSL_R_TLSV1_ALERT_NO_RENEGOTIATION),
661      "tlsv1 alert no renegotiation"},
662     {ERR_REASON(SSL_R_TLSV1_ALERT_PROTOCOL_VERSION),
663      "tlsv1 alert protocol version"},
664     {ERR_REASON(SSL_R_TLSV1_ALERT_RECORD_OVERFLOW),
665      "tlsv1 alert record overflow"},
666     {ERR_REASON(SSL_R_TLSV1_ALERT_UNKNOWN_CA), "tlsv1 alert unknown ca"},
667     {ERR_REASON(SSL_R_TLSV1_ALERT_USER_CANCELLED),
668      "tlsv1 alert user cancelled"},
669     {ERR_REASON(SSL_R_TLSV1_BAD_CERTIFICATE_HASH_VALUE),
670      "tlsv1 bad certificate hash value"},
671     {ERR_REASON(SSL_R_TLSV1_BAD_CERTIFICATE_STATUS_RESPONSE),
672      "tlsv1 bad certificate status response"},
673     {ERR_REASON(SSL_R_TLSV1_CERTIFICATE_UNOBTAINABLE),
674      "tlsv1 certificate unobtainable"},
675     {ERR_REASON(SSL_R_TLSV1_UNRECOGNIZED_NAME), "tlsv1 unrecognized name"},
676     {ERR_REASON(SSL_R_TLSV1_UNSUPPORTED_EXTENSION),
677      "tlsv1 unsupported extension"},
678     {ERR_REASON(SSL_R_TLS_HEARTBEAT_PEER_DOESNT_ACCEPT),
679      "peer does not accept heartbeats"},
680     {ERR_REASON(SSL_R_TLS_HEARTBEAT_PENDING),
681      "heartbeat request already pending"},
682     {ERR_REASON(SSL_R_TLS_ILLEGAL_EXPORTER_LABEL),
683      "tls illegal exporter label"},
684     {ERR_REASON(SSL_R_TLS_INVALID_ECPOINTFORMAT_LIST),
685      "tls invalid ecpointformat list"},
686     {ERR_REASON(SSL_R_TOO_MANY_WARN_ALERTS), "too many warn alerts"},
687     {ERR_REASON(SSL_R_UNABLE_TO_FIND_ECDH_PARAMETERS),
688      "unable to find ecdh parameters"},
689     {ERR_REASON(SSL_R_UNABLE_TO_FIND_PUBLIC_KEY_PARAMETERS),
690      "unable to find public key parameters"},
691     {ERR_REASON(SSL_R_UNABLE_TO_LOAD_SSL3_MD5_ROUTINES),
692      "unable to load ssl3 md5 routines"},
693     {ERR_REASON(SSL_R_UNABLE_TO_LOAD_SSL3_SHA1_ROUTINES),
694      "unable to load ssl3 sha1 routines"},
695     {ERR_REASON(SSL_R_UNEXPECTED_MESSAGE), "unexpected message"},
696     {ERR_REASON(SSL_R_UNEXPECTED_RECORD), "unexpected record"},
697     {ERR_REASON(SSL_R_UNINITIALIZED), "uninitialized"},
698     {ERR_REASON(SSL_R_UNKNOWN_ALERT_TYPE), "unknown alert type"},
699     {ERR_REASON(SSL_R_UNKNOWN_CERTIFICATE_TYPE), "unknown certificate type"},
700     {ERR_REASON(SSL_R_UNKNOWN_CIPHER_RETURNED), "unknown cipher returned"},
701     {ERR_REASON(SSL_R_UNKNOWN_CIPHER_TYPE), "unknown cipher type"},
702     {ERR_REASON(SSL_R_UNKNOWN_CMD_NAME), "unknown cmd name"},
703     {ERR_REASON(SSL_R_UNKNOWN_COMMAND), "unknown command"},
704     {ERR_REASON(SSL_R_UNKNOWN_DIGEST), "unknown digest"},
705     {ERR_REASON(SSL_R_UNKNOWN_KEY_EXCHANGE_TYPE),
706      "unknown key exchange type"},
707     {ERR_REASON(SSL_R_UNKNOWN_PKEY_TYPE), "unknown pkey type"},
708     {ERR_REASON(SSL_R_UNKNOWN_PROTOCOL), "unknown protocol"},
709     {ERR_REASON(SSL_R_UNKNOWN_SSL_VERSION), "unknown ssl version"},
710     {ERR_REASON(SSL_R_UNKNOWN_STATE), "unknown state"},
711     {ERR_REASON(SSL_R_UNSAFE_LEGACY_RENEGOTIATION_DISABLED),
712      "unsafe legacy renegotiation disabled"},
713     {ERR_REASON(SSL_R_UNSUPPORTED_COMPRESSION_ALGORITHM),
714      "unsupported compression algorithm"},
715     {ERR_REASON(SSL_R_UNSUPPORTED_ELLIPTIC_CURVE),
716      "unsupported elliptic curve"},
717     {ERR_REASON(SSL_R_UNSUPPORTED_PROTOCOL), "unsupported protocol"},
718     {ERR_REASON(SSL_R_UNSUPPORTED_SSL_VERSION), "unsupported ssl version"},
719     {ERR_REASON(SSL_R_UNSUPPORTED_STATUS_TYPE), "unsupported status type"},
720     {ERR_REASON(SSL_R_USE_SRTP_NOT_NEGOTIATED), "use srtp not negotiated"},
721     {ERR_REASON(SSL_R_VERSION_TOO_HIGH), "version too high"},
722     {ERR_REASON(SSL_R_VERSION_TOO_LOW), "version too low"},
723     {ERR_REASON(SSL_R_WRONG_CERTIFICATE_TYPE), "wrong certificate type"},
724     {ERR_REASON(SSL_R_WRONG_CIPHER_RETURNED), "wrong cipher returned"},
725     {ERR_REASON(SSL_R_WRONG_CURVE), "wrong curve"},
726     {ERR_REASON(SSL_R_WRONG_SIGNATURE_LENGTH), "wrong signature length"},
727     {ERR_REASON(SSL_R_WRONG_SIGNATURE_SIZE), "wrong signature size"},
728     {ERR_REASON(SSL_R_WRONG_SIGNATURE_TYPE), "wrong signature type"},
729     {ERR_REASON(SSL_R_WRONG_SSL_VERSION), "wrong ssl version"},
730     {ERR_REASON(SSL_R_WRONG_VERSION_NUMBER), "wrong version number"},
731     {ERR_REASON(SSL_R_X509_LIB), "x509 lib"},
732     {ERR_REASON(SSL_R_X509_VERIFICATION_SETUP_PROBLEMS),
733      "x509 verification setup problems"},
734     {0, NULL}
735 };
736
737 #endif
738
739 int ERR_load_SSL_strings(void)
740 {
741 #ifndef OPENSSL_NO_ERR
742
743     if (ERR_func_error_string(SSL_str_functs[0].error) == NULL) {
744         ERR_load_strings(0, SSL_str_functs);
745         ERR_load_strings(0, SSL_str_reasons);
746     }
747 #endif
748     return 1;
749 }