Enumeration

Secure Transport Result Codes

Recognize result codes specific to the secure transport API.

Declaration

enum : OSStatus {
    ...
};

Overview

Use the SecCopyErrorMessageString function to obtain a human readable string corresponding to these status codes.

The functions of the Secure Transport API may also return the general codes listed in Security Framework Result Codes.

Errors in the range of –9819 through –9840 are fatal errors that are detected by the peer.

Topics

Constants

errSSLServerAuthCompleted

The server certificate is either valid or was ignored if verification is disabled.

errSSLATSViolation

An App Transport Security violation occurred.

errSSLATSMinimumVersionViolation

The minimum protocol version isn’t App Transport Security compliant.

errSSLATSCiphersuiteViolation

The selected ciphersuite isn’t App Transport Security compliant.

errSSLATSMinimumKeySizeViolation

The peer key size isn’t App Transport Security compliant.

errSSLATSLeafCertificateHashAlgorithmViolation

The peer leaf certificate hash algorithm isn’t App Transport Security compliant.

errSSLATSCertificateHashAlgorithmViolation

The peer certificate hash algorithm isn’t App Transport Security compliant.

errSSLATSCertificateTrustViolation

The peer certificate wasn’t issued by a trusted peer.

errSSLBadCert

Bad certificate format.

errSSLBadCipherSuite

A bad SSL cipher suite was encountered.

errSSLBadConfiguration

A configuration error occurred.

errSSLBadRecordMac

A record with a bad message authentication code (MAC) was encountered.

errSSLBufferOverflow

An insufficient buffer was provided.

errSSLCertExpired

The certificate chain had an expired certificate.

errSSLCertNotYetValid

The certificate chain had a certificate that is not yet valid.

errSSLCertificateRequired

Certificate required.

errSSLClientCertRequested

The server has requested a client certificate.

errSSLClientHelloReceived

A non-fatal result for providing a server name indication.

errSSLClosedAbort

The connection closed due to an error.

errSSLClosedGraceful

The connection closed gracefully.

errSSLClosedNoNotify

The server closed the session with no notification.

errSSLConfigurationFailed

TLS configuration failed.

errSSLConnectionRefused

The peer dropped the connection before responding.

errSSLCrypto

An underlying cryptographic error was encountered.

errSSLDecodeError

Decode failed.

errSSLDecompressFail

Decompression failed.

errSSLDecryptionFail

Decryption failed.

errSSLFatalAlert

A fatal alert was encountered.

errSSLHandshakeFail

Handshake failed.

errSSLHostNameMismatch

The host name you connected with does not match any of the host names allowed by the certificate.

errSSLIllegalParam

An illegal parameter was encountered.

errSSLInappropriateFallback

Inappropriate fallback.

errSSLInternal

Internal error.

errSSLMissingExtension

Missing extension.

errSSLModuleAttach

Module attach failure.

errSSLNegotiation

The cipher suite negotiation failed.

errSSLNetworkTimeout

Network timeout triggered.

errSSLNoRootCert

No root certificate for the certificate chain.

errSSLPeerAccessDenied

Access was denied.

errSSLPeerAuthCompleted

A non-fatal result indicating the peer certificate is valid, or was ignored if verification is disabled.

errSSLPeerBadCert

A bad certificate was encountered.

errSSLPeerBadRecordMac

A record with a bad message authentication code (MAC) was encountered.

errSSLPeerCertExpired

The certificate expired.

errSSLPeerCertRevoked

The certificate was revoked.

errSSLPeerCertUnknown

The certificate is unknown.

errSSLPeerDecodeError

A decoding error occurred.

errSSLPeerDecompressFail

Decompression failed.

errSSLPeerDecryptError

A decryption error occurred.

errSSLPeerDecryptionFail

Decryption failed.

errSSLPeerExportRestriction

An export restriction occurred.

errSSLPeerHandshakeFail

The handshake failed.

errSSLPeerInsufficientSecurity

There is insufficient security for this operation.

errSSLPeerInternalError

An internal error occurred.

errSSLPeerNoRenegotiation

No renegotiation is allowed.

errSSLPeerProtocolVersion

A bad protocol version was encountered.

errSSLPeerRecordOverflow

A record overflow occurred.

errSSLPeerUnexpectedMsg

An unexpected message was received.

errSSLPeerUnknownCA

An unknown certificate authority was encountered.

errSSLPeerUnsupportedCert

An unsupported certificate format was encountered.

errSSLPeerUserCancelled

The user canceled the operation.

errSSLProtocol

SSL protocol error.

errSSLRecordOverflow

A record overflow occurred.

errSSLSessionNotFound

An attempt to restore an unknown session failed.

errSSLTransportReset

Transport (socket) shutdown, for example, TCP, RST, or FIN.

errSSLUnexpectedMessage

Peer rejected unexpected message.

errSSLUnknownPSKIdentity

Unknown PSK identity.

errSSLUnknownRootCert

Certificate chain is valid, but root is not trusted.

errSSLUnrecognizedName

Unknown or unrecognized name.

errSSLUnsupportedExtension

Unsupported TLS extension.

errSSLWeakPeerEphemeralDHKey

Indicates a weak ephemeral dh key.

errSSLWouldBlock

Function is blocked; waiting for I/O. This is not fatal.

errSSLXCertChainInvalid

Invalid certificate chain.