1 /***************************************************************************
3 * Project ___| | | | _ \| |
5 * | (__| |_| | _ <| |___
6 * \___|\___/|_| \_\_____|
8 * Copyright (C) 2004 - 2016, Daniel Stenberg, <daniel@haxx.se>, et al.
10 * This software is licensed as described in the file COPYING, which
11 * you should have received as part of this distribution. The terms
12 * are also available at https://curl.haxx.se/docs/copyright.html.
14 * You may opt to use, copy, modify, merge, publish, distribute and/or sell
15 * copies of the Software, and permit persons to whom the Software is
16 * furnished to do so, under the terms of the COPYING file.
18 * This software is distributed on an "AS IS" basis, WITHOUT WARRANTY OF ANY
19 * KIND, either express or implied.
21 ***************************************************************************/
23 #include "curl_setup.h"
25 #ifdef HAVE_STRERROR_R
26 # if (!defined(HAVE_POSIX_STRERROR_R) && \
27 !defined(HAVE_GLIBC_STRERROR_R) && \
28 !defined(HAVE_VXWORKS_STRERROR_R)) || \
29 (defined(HAVE_POSIX_STRERROR_R) && defined(HAVE_VXWORKS_STRERROR_R)) || \
30 (defined(HAVE_GLIBC_STRERROR_R) && defined(HAVE_VXWORKS_STRERROR_R)) || \
31 (defined(HAVE_POSIX_STRERROR_R) && defined(HAVE_GLIBC_STRERROR_R))
32 # error "strerror_r MUST be either POSIX, glibc or vxworks-style"
36 #include <curl/curl.h>
42 #ifdef USE_WINDOWS_SSPI
43 #include "curl_sspi.h"
47 /* The last 3 #include files should be in this order */
48 #include "curl_printf.h"
49 #include "curl_memory.h"
53 curl_easy_strerror(CURLcode error)
55 #ifndef CURL_DISABLE_VERBOSE_STRINGS
60 case CURLE_UNSUPPORTED_PROTOCOL:
61 return "Unsupported protocol";
63 case CURLE_FAILED_INIT:
64 return "Failed initialization";
66 case CURLE_URL_MALFORMAT:
67 return "URL using bad/illegal format or missing URL";
69 case CURLE_NOT_BUILT_IN:
70 return "A requested feature, protocol or option was not found built-in in"
71 " this libcurl due to a build-time decision.";
73 case CURLE_COULDNT_RESOLVE_PROXY:
74 return "Couldn't resolve proxy name";
76 case CURLE_COULDNT_RESOLVE_HOST:
77 return "Couldn't resolve host name";
79 case CURLE_COULDNT_CONNECT:
80 return "Couldn't connect to server";
82 case CURLE_WEIRD_SERVER_REPLY:
83 return "Weird server reply";
85 case CURLE_REMOTE_ACCESS_DENIED:
86 return "Access denied to remote resource";
88 case CURLE_FTP_ACCEPT_FAILED:
89 return "FTP: The server failed to connect to data port";
91 case CURLE_FTP_ACCEPT_TIMEOUT:
92 return "FTP: Accepting server connect has timed out";
94 case CURLE_FTP_PRET_FAILED:
95 return "FTP: The server did not accept the PRET command.";
97 case CURLE_FTP_WEIRD_PASS_REPLY:
98 return "FTP: unknown PASS reply";
100 case CURLE_FTP_WEIRD_PASV_REPLY:
101 return "FTP: unknown PASV reply";
103 case CURLE_FTP_WEIRD_227_FORMAT:
104 return "FTP: unknown 227 response format";
106 case CURLE_FTP_CANT_GET_HOST:
107 return "FTP: can't figure out the host in the PASV response";
110 return "Error in the HTTP2 framing layer";
112 case CURLE_FTP_COULDNT_SET_TYPE:
113 return "FTP: couldn't set file type";
115 case CURLE_PARTIAL_FILE:
116 return "Transferred a partial file";
118 case CURLE_FTP_COULDNT_RETR_FILE:
119 return "FTP: couldn't retrieve (RETR failed) the specified file";
121 case CURLE_QUOTE_ERROR:
122 return "Quote command returned error";
124 case CURLE_HTTP_RETURNED_ERROR:
125 return "HTTP response code said error";
127 case CURLE_WRITE_ERROR:
128 return "Failed writing received data to disk/application";
130 case CURLE_UPLOAD_FAILED:
131 return "Upload failed (at start/before it took off)";
133 case CURLE_READ_ERROR:
134 return "Failed to open/read local data from file/application";
136 case CURLE_OUT_OF_MEMORY:
137 return "Out of memory";
139 case CURLE_OPERATION_TIMEDOUT:
140 return "Timeout was reached";
142 case CURLE_FTP_PORT_FAILED:
143 return "FTP: command PORT failed";
145 case CURLE_FTP_COULDNT_USE_REST:
146 return "FTP: command REST failed";
148 case CURLE_RANGE_ERROR:
149 return "Requested range was not delivered by the server";
151 case CURLE_HTTP_POST_ERROR:
152 return "Internal problem setting up the POST";
154 case CURLE_SSL_CONNECT_ERROR:
155 return "SSL connect error";
157 case CURLE_BAD_DOWNLOAD_RESUME:
158 return "Couldn't resume download";
160 case CURLE_FILE_COULDNT_READ_FILE:
161 return "Couldn't read a file:// file";
163 case CURLE_LDAP_CANNOT_BIND:
164 return "LDAP: cannot bind";
166 case CURLE_LDAP_SEARCH_FAILED:
167 return "LDAP: search failed";
169 case CURLE_FUNCTION_NOT_FOUND:
170 return "A required function in the library was not found";
172 case CURLE_ABORTED_BY_CALLBACK:
173 return "Operation was aborted by an application callback";
175 case CURLE_BAD_FUNCTION_ARGUMENT:
176 return "A libcurl function was given a bad argument";
178 case CURLE_INTERFACE_FAILED:
179 return "Failed binding local connection end";
181 case CURLE_TOO_MANY_REDIRECTS :
182 return "Number of redirects hit maximum amount";
184 case CURLE_UNKNOWN_OPTION:
185 return "An unknown option was passed in to libcurl";
187 case CURLE_TELNET_OPTION_SYNTAX :
188 return "Malformed telnet option";
190 case CURLE_PEER_FAILED_VERIFICATION:
191 return "SSL peer certificate or SSH remote key was not OK";
193 case CURLE_GOT_NOTHING:
194 return "Server returned nothing (no headers, no data)";
196 case CURLE_SSL_ENGINE_NOTFOUND:
197 return "SSL crypto engine not found";
199 case CURLE_SSL_ENGINE_SETFAILED:
200 return "Can not set SSL crypto engine as default";
202 case CURLE_SSL_ENGINE_INITFAILED:
203 return "Failed to initialise SSL crypto engine";
205 case CURLE_SEND_ERROR:
206 return "Failed sending data to the peer";
208 case CURLE_RECV_ERROR:
209 return "Failure when receiving data from the peer";
211 case CURLE_SSL_CERTPROBLEM:
212 return "Problem with the local SSL certificate";
214 case CURLE_SSL_CIPHER:
215 return "Couldn't use specified SSL cipher";
217 case CURLE_SSL_CACERT:
218 return "Peer certificate cannot be authenticated with given CA "
221 case CURLE_SSL_CACERT_BADFILE:
222 return "Problem with the SSL CA cert (path? access rights?)";
224 case CURLE_BAD_CONTENT_ENCODING:
225 return "Unrecognized or bad HTTP Content or Transfer-Encoding";
227 case CURLE_LDAP_INVALID_URL:
228 return "Invalid LDAP URL";
230 case CURLE_FILESIZE_EXCEEDED:
231 return "Maximum file size exceeded";
233 case CURLE_USE_SSL_FAILED:
234 return "Requested SSL level failed";
236 case CURLE_SSL_SHUTDOWN_FAILED:
237 return "Failed to shut down the SSL connection";
239 case CURLE_SSL_CRL_BADFILE:
240 return "Failed to load CRL file (path? access rights?, format?)";
242 case CURLE_SSL_ISSUER_ERROR:
243 return "Issuer check against peer certificate failed";
245 case CURLE_SEND_FAIL_REWIND:
246 return "Send failed since rewinding of the data stream failed";
248 case CURLE_LOGIN_DENIED:
249 return "Login denied";
251 case CURLE_TFTP_NOTFOUND:
252 return "TFTP: File Not Found";
254 case CURLE_TFTP_PERM:
255 return "TFTP: Access Violation";
257 case CURLE_REMOTE_DISK_FULL:
258 return "Disk full or allocation exceeded";
260 case CURLE_TFTP_ILLEGAL:
261 return "TFTP: Illegal operation";
263 case CURLE_TFTP_UNKNOWNID:
264 return "TFTP: Unknown transfer ID";
266 case CURLE_REMOTE_FILE_EXISTS:
267 return "Remote file already exists";
269 case CURLE_TFTP_NOSUCHUSER:
270 return "TFTP: No such user";
272 case CURLE_CONV_FAILED:
273 return "Conversion failed";
275 case CURLE_CONV_REQD:
276 return "Caller must register CURLOPT_CONV_ callback options";
278 case CURLE_REMOTE_FILE_NOT_FOUND:
279 return "Remote file not found";
282 return "Error in the SSH layer";
285 return "Socket not ready for send/recv";
287 case CURLE_RTSP_CSEQ_ERROR:
288 return "RTSP CSeq mismatch or invalid CSeq";
290 case CURLE_RTSP_SESSION_ERROR:
291 return "RTSP session error";
293 case CURLE_FTP_BAD_FILE_LIST:
294 return "Unable to parse FTP file list";
296 case CURLE_CHUNK_FAILED:
297 return "Chunk callback failed";
299 case CURLE_NO_CONNECTION_AVAILABLE:
300 return "The max connection limit is reached";
302 case CURLE_SSL_PINNEDPUBKEYNOTMATCH:
303 return "SSL public key does not match pinned public key";
305 case CURLE_SSL_INVALIDCERTSTATUS:
306 return "SSL server certificate status verification FAILED";
308 case CURLE_HTTP2_STREAM:
309 return "Stream error in the HTTP/2 framing layer";
311 /* error codes not used by current libcurl */
312 case CURLE_OBSOLETE20:
313 case CURLE_OBSOLETE24:
314 case CURLE_OBSOLETE29:
315 case CURLE_OBSOLETE32:
316 case CURLE_OBSOLETE40:
317 case CURLE_OBSOLETE44:
318 case CURLE_OBSOLETE46:
319 case CURLE_OBSOLETE50:
320 case CURLE_OBSOLETE57:
325 * By using a switch, gcc -Wall will complain about enum values
326 * which do not appear, helping keep this function up-to-date.
327 * By using gcc -Wall -Werror, you can't forget.
329 * A table would not have the same benefit. Most compilers will
330 * generate code very similar to a table in any case, so there
331 * is little performance gain from a table. And something is broken
332 * for the user's application, anyways, so does it matter how fast
335 * The line number for the error will be near this comment, which
336 * is why it is here, and not at the start of the switch.
338 return "Unknown error";
348 curl_multi_strerror(CURLMcode error)
350 #ifndef CURL_DISABLE_VERBOSE_STRINGS
352 case CURLM_CALL_MULTI_PERFORM:
353 return "Please call curl_multi_perform() soon";
358 case CURLM_BAD_HANDLE:
359 return "Invalid multi handle";
361 case CURLM_BAD_EASY_HANDLE:
362 return "Invalid easy handle";
364 case CURLM_OUT_OF_MEMORY:
365 return "Out of memory";
367 case CURLM_INTERNAL_ERROR:
368 return "Internal error";
370 case CURLM_BAD_SOCKET:
371 return "Invalid socket argument";
373 case CURLM_UNKNOWN_OPTION:
374 return "Unknown option";
376 case CURLM_ADDED_ALREADY:
377 return "The easy handle is already added to a multi handle";
383 return "Unknown error";
385 if(error == CURLM_OK)
393 curl_share_strerror(CURLSHcode error)
395 #ifndef CURL_DISABLE_VERBOSE_STRINGS
400 case CURLSHE_BAD_OPTION:
401 return "Unknown share option";
404 return "Share currently in use";
406 case CURLSHE_INVALID:
407 return "Invalid share handle";
410 return "Out of memory";
412 case CURLSHE_NOT_BUILT_IN:
413 return "Feature not enabled in this library";
419 return "CURLSHcode unknown";
421 if(error == CURLSHE_OK)
430 /* This function handles most / all (?) Winsock errors curl is able to produce.
433 get_winsock_error (int err, char *buf, size_t len)
437 #ifndef CURL_DISABLE_VERBOSE_STRINGS
440 p = "Call interrupted";
452 p = "Invalid arguments";
455 p = "Out of file descriptors";
458 p = "Call would block";
462 p = "Blocking call in progress";
465 p = "Descriptor is not a socket";
467 case WSAEDESTADDRREQ:
468 p = "Need destination address";
471 p = "Bad message size";
477 p = "Protocol option is unsupported";
479 case WSAEPROTONOSUPPORT:
480 p = "Protocol is unsupported";
482 case WSAESOCKTNOSUPPORT:
483 p = "Socket is unsupported";
486 p = "Operation not supported";
488 case WSAEAFNOSUPPORT:
489 p = "Address family not supported";
491 case WSAEPFNOSUPPORT:
492 p = "Protocol family not supported";
495 p = "Address already in use";
497 case WSAEADDRNOTAVAIL:
498 p = "Address not available";
504 p = "Network unreachable";
507 p = "Network has been reset";
509 case WSAECONNABORTED:
510 p = "Connection was aborted";
513 p = "Connection was reset";
516 p = "No buffer space";
519 p = "Socket is already connected";
522 p = "Socket is not connected";
525 p = "Socket has been shut down";
527 case WSAETOOMANYREFS:
528 p = "Too many references";
533 case WSAECONNREFUSED:
534 p = "Connection refused";
539 case WSAENAMETOOLONG:
545 case WSAEHOSTUNREACH:
546 p = "Host unreachable";
552 p = "Process limit reached";
555 p = "Too many users";
561 p = "Something is stale";
566 #ifdef WSAEDISCON /* missing in SalfordC! */
571 /* Extended Winsock errors */
573 p = "Winsock library is not ready";
575 case WSANOTINITIALISED:
576 p = "Winsock library not initialised";
578 case WSAVERNOTSUPPORTED:
579 p = "Winsock version not supported";
582 /* getXbyY() errors (already handled in herrmsg):
583 * Authoritative Answer: Host not found */
584 case WSAHOST_NOT_FOUND:
585 p = "Host not found";
588 /* Non-Authoritative: Host not found, or SERVERFAIL */
590 p = "Host not found, try again";
593 /* Non recoverable errors, FORMERR, REFUSED, NOTIMP */
595 p = "Unrecoverable error in call to nameserver";
598 /* Valid name, no data record of requested type */
600 p = "No data record of requested type";
612 strncpy(buf, p, len);
616 #endif /* USE_WINSOCK */
619 * Our thread-safe and smart strerror() replacement.
621 * The 'err' argument passed in to this function MUST be a true errno number
622 * as reported on this system. We do no range checking on the number before
623 * we pass it to the "number-to-message" conversion function and there might
624 * be systems that don't do proper range checking in there themselves.
626 * We don't do range checking (on systems other than Windows) since there is
627 * no good reliable and portable way to do it.
629 const char *Curl_strerror(struct connectdata *conn, int err)
633 int old_errno = ERRNO;
636 DEBUGASSERT(err >= 0);
638 buf = conn->syserr_buf;
639 max = sizeof(conn->syserr_buf)-1;
649 FormatMessage(FORMAT_MESSAGE_FROM_SYSTEM, NULL, err,
650 LANG_NEUTRAL, wbuf, sizeof(wbuf)/sizeof(wchar_t), NULL);
651 wcstombs(buf, wbuf, max);
654 /* 'sys_nerr' is the maximum errno number, it is not widely portable */
655 if(err >= 0 && err < sys_nerr)
656 strncpy(buf, strerror(err), max);
658 if(!get_winsock_error(err, buf, max) &&
659 !FormatMessageA(FORMAT_MESSAGE_FROM_SYSTEM, NULL, err,
660 LANG_NEUTRAL, buf, (DWORD)max, NULL))
661 snprintf(buf, max, "Unknown error %d (%#x)", err, err);
665 #else /* not USE_WINSOCK coming up */
667 #if defined(HAVE_STRERROR_R) && defined(HAVE_POSIX_STRERROR_R)
669 * The POSIX-style strerror_r() may set errno to ERANGE if insufficient
670 * storage is supplied via 'strerrbuf' and 'buflen' to hold the generated
671 * message string, or EINVAL if 'errnum' is not a valid error number.
673 if(0 != strerror_r(err, buf, max)) {
675 snprintf(buf, max, "Unknown error %d", err);
677 #elif defined(HAVE_STRERROR_R) && defined(HAVE_GLIBC_STRERROR_R)
679 * The glibc-style strerror_r() only *might* use the buffer we pass to
680 * the function, but it always returns the error message as a pointer,
681 * so we must copy that string unconditionally (if non-NULL).
685 char *msg = strerror_r(err, buffer, sizeof(buffer));
687 strncpy(buf, msg, max);
689 snprintf(buf, max, "Unknown error %d", err);
691 #elif defined(HAVE_STRERROR_R) && defined(HAVE_VXWORKS_STRERROR_R)
693 * The vxworks-style strerror_r() does use the buffer we pass to the function.
694 * The buffer size should be at least NAME_MAX (256)
698 if(OK == strerror_r(err, buffer))
699 strncpy(buf, buffer, max);
701 snprintf(buf, max, "Unknown error %d", err);
705 char *msg = strerror(err);
707 strncpy(buf, msg, max);
709 snprintf(buf, max, "Unknown error %d", err);
713 #endif /* end of ! USE_WINSOCK */
715 buf[max] = '\0'; /* make sure the string is zero terminated */
717 /* strip trailing '\r\n' or '\n'. */
718 p = strrchr(buf, '\n');
719 if(p && (p - buf) >= 2)
721 p = strrchr(buf, '\r');
722 if(p && (p - buf) >= 1)
725 if(old_errno != ERRNO)
726 SET_ERRNO(old_errno);
731 #ifdef USE_WINDOWS_SSPI
732 const char *Curl_sspi_strerror (struct connectdata *conn, int err)
734 #ifndef CURL_DISABLE_VERBOSE_STRINGS
736 char msgbuf[sizeof(conn->syserr_buf)];
737 char *p, *str, *msg = NULL;
738 bool msg_formatted = FALSE;
747 outbuf = conn->syserr_buf;
748 outmax = sizeof(conn->syserr_buf)-1;
751 #ifndef CURL_DISABLE_VERBOSE_STRINGS
759 case CRYPT_E_REVOKED:
760 txt = "CRYPT_E_REVOKED";
762 case SEC_E_ALGORITHM_MISMATCH:
763 txt = "SEC_E_ALGORITHM_MISMATCH";
765 case SEC_E_BAD_BINDINGS:
766 txt = "SEC_E_BAD_BINDINGS";
768 case SEC_E_BAD_PKGID:
769 txt = "SEC_E_BAD_PKGID";
771 case SEC_E_BUFFER_TOO_SMALL:
772 txt = "SEC_E_BUFFER_TOO_SMALL";
774 case SEC_E_CANNOT_INSTALL:
775 txt = "SEC_E_CANNOT_INSTALL";
777 case SEC_E_CANNOT_PACK:
778 txt = "SEC_E_CANNOT_PACK";
780 case SEC_E_CERT_EXPIRED:
781 txt = "SEC_E_CERT_EXPIRED";
783 case SEC_E_CERT_UNKNOWN:
784 txt = "SEC_E_CERT_UNKNOWN";
786 case SEC_E_CERT_WRONG_USAGE:
787 txt = "SEC_E_CERT_WRONG_USAGE";
789 case SEC_E_CONTEXT_EXPIRED:
790 txt = "SEC_E_CONTEXT_EXPIRED";
792 case SEC_E_CROSSREALM_DELEGATION_FAILURE:
793 txt = "SEC_E_CROSSREALM_DELEGATION_FAILURE";
795 case SEC_E_CRYPTO_SYSTEM_INVALID:
796 txt = "SEC_E_CRYPTO_SYSTEM_INVALID";
798 case SEC_E_DECRYPT_FAILURE:
799 txt = "SEC_E_DECRYPT_FAILURE";
801 case SEC_E_DELEGATION_POLICY:
802 txt = "SEC_E_DELEGATION_POLICY";
804 case SEC_E_DELEGATION_REQUIRED:
805 txt = "SEC_E_DELEGATION_REQUIRED";
807 case SEC_E_DOWNGRADE_DETECTED:
808 txt = "SEC_E_DOWNGRADE_DETECTED";
810 case SEC_E_ENCRYPT_FAILURE:
811 txt = "SEC_E_ENCRYPT_FAILURE";
813 case SEC_E_ILLEGAL_MESSAGE:
814 txt = "SEC_E_ILLEGAL_MESSAGE";
816 case SEC_E_INCOMPLETE_CREDENTIALS:
817 txt = "SEC_E_INCOMPLETE_CREDENTIALS";
819 case SEC_E_INCOMPLETE_MESSAGE:
820 txt = "SEC_E_INCOMPLETE_MESSAGE";
822 case SEC_E_INSUFFICIENT_MEMORY:
823 txt = "SEC_E_INSUFFICIENT_MEMORY";
825 case SEC_E_INTERNAL_ERROR:
826 txt = "SEC_E_INTERNAL_ERROR";
828 case SEC_E_INVALID_HANDLE:
829 txt = "SEC_E_INVALID_HANDLE";
831 case SEC_E_INVALID_PARAMETER:
832 txt = "SEC_E_INVALID_PARAMETER";
834 case SEC_E_INVALID_TOKEN:
835 txt = "SEC_E_INVALID_TOKEN";
837 case SEC_E_ISSUING_CA_UNTRUSTED:
838 txt = "SEC_E_ISSUING_CA_UNTRUSTED";
840 case SEC_E_ISSUING_CA_UNTRUSTED_KDC:
841 txt = "SEC_E_ISSUING_CA_UNTRUSTED_KDC";
843 case SEC_E_KDC_CERT_EXPIRED:
844 txt = "SEC_E_KDC_CERT_EXPIRED";
846 case SEC_E_KDC_CERT_REVOKED:
847 txt = "SEC_E_KDC_CERT_REVOKED";
849 case SEC_E_KDC_INVALID_REQUEST:
850 txt = "SEC_E_KDC_INVALID_REQUEST";
852 case SEC_E_KDC_UNABLE_TO_REFER:
853 txt = "SEC_E_KDC_UNABLE_TO_REFER";
855 case SEC_E_KDC_UNKNOWN_ETYPE:
856 txt = "SEC_E_KDC_UNKNOWN_ETYPE";
858 case SEC_E_LOGON_DENIED:
859 txt = "SEC_E_LOGON_DENIED";
861 case SEC_E_MAX_REFERRALS_EXCEEDED:
862 txt = "SEC_E_MAX_REFERRALS_EXCEEDED";
864 case SEC_E_MESSAGE_ALTERED:
865 txt = "SEC_E_MESSAGE_ALTERED";
867 case SEC_E_MULTIPLE_ACCOUNTS:
868 txt = "SEC_E_MULTIPLE_ACCOUNTS";
870 case SEC_E_MUST_BE_KDC:
871 txt = "SEC_E_MUST_BE_KDC";
873 case SEC_E_NOT_OWNER:
874 txt = "SEC_E_NOT_OWNER";
876 case SEC_E_NO_AUTHENTICATING_AUTHORITY:
877 txt = "SEC_E_NO_AUTHENTICATING_AUTHORITY";
879 case SEC_E_NO_CREDENTIALS:
880 txt = "SEC_E_NO_CREDENTIALS";
882 case SEC_E_NO_IMPERSONATION:
883 txt = "SEC_E_NO_IMPERSONATION";
885 case SEC_E_NO_IP_ADDRESSES:
886 txt = "SEC_E_NO_IP_ADDRESSES";
888 case SEC_E_NO_KERB_KEY:
889 txt = "SEC_E_NO_KERB_KEY";
891 case SEC_E_NO_PA_DATA:
892 txt = "SEC_E_NO_PA_DATA";
894 case SEC_E_NO_S4U_PROT_SUPPORT:
895 txt = "SEC_E_NO_S4U_PROT_SUPPORT";
897 case SEC_E_NO_TGT_REPLY:
898 txt = "SEC_E_NO_TGT_REPLY";
900 case SEC_E_OUT_OF_SEQUENCE:
901 txt = "SEC_E_OUT_OF_SEQUENCE";
903 case SEC_E_PKINIT_CLIENT_FAILURE:
904 txt = "SEC_E_PKINIT_CLIENT_FAILURE";
906 case SEC_E_PKINIT_NAME_MISMATCH:
907 txt = "SEC_E_PKINIT_NAME_MISMATCH";
909 case SEC_E_POLICY_NLTM_ONLY:
910 txt = "SEC_E_POLICY_NLTM_ONLY";
912 case SEC_E_QOP_NOT_SUPPORTED:
913 txt = "SEC_E_QOP_NOT_SUPPORTED";
915 case SEC_E_REVOCATION_OFFLINE_C:
916 txt = "SEC_E_REVOCATION_OFFLINE_C";
918 case SEC_E_REVOCATION_OFFLINE_KDC:
919 txt = "SEC_E_REVOCATION_OFFLINE_KDC";
921 case SEC_E_SECPKG_NOT_FOUND:
922 txt = "SEC_E_SECPKG_NOT_FOUND";
924 case SEC_E_SECURITY_QOS_FAILED:
925 txt = "SEC_E_SECURITY_QOS_FAILED";
927 case SEC_E_SHUTDOWN_IN_PROGRESS:
928 txt = "SEC_E_SHUTDOWN_IN_PROGRESS";
930 case SEC_E_SMARTCARD_CERT_EXPIRED:
931 txt = "SEC_E_SMARTCARD_CERT_EXPIRED";
933 case SEC_E_SMARTCARD_CERT_REVOKED:
934 txt = "SEC_E_SMARTCARD_CERT_REVOKED";
936 case SEC_E_SMARTCARD_LOGON_REQUIRED:
937 txt = "SEC_E_SMARTCARD_LOGON_REQUIRED";
939 case SEC_E_STRONG_CRYPTO_NOT_SUPPORTED:
940 txt = "SEC_E_STRONG_CRYPTO_NOT_SUPPORTED";
942 case SEC_E_TARGET_UNKNOWN:
943 txt = "SEC_E_TARGET_UNKNOWN";
945 case SEC_E_TIME_SKEW:
946 txt = "SEC_E_TIME_SKEW";
948 case SEC_E_TOO_MANY_PRINCIPALS:
949 txt = "SEC_E_TOO_MANY_PRINCIPALS";
951 case SEC_E_UNFINISHED_CONTEXT_DELETED:
952 txt = "SEC_E_UNFINISHED_CONTEXT_DELETED";
954 case SEC_E_UNKNOWN_CREDENTIALS:
955 txt = "SEC_E_UNKNOWN_CREDENTIALS";
957 case SEC_E_UNSUPPORTED_FUNCTION:
958 txt = "SEC_E_UNSUPPORTED_FUNCTION";
960 case SEC_E_UNSUPPORTED_PREAUTH:
961 txt = "SEC_E_UNSUPPORTED_PREAUTH";
963 case SEC_E_UNTRUSTED_ROOT:
964 txt = "SEC_E_UNTRUSTED_ROOT";
966 case SEC_E_WRONG_CREDENTIAL_HANDLE:
967 txt = "SEC_E_WRONG_CREDENTIAL_HANDLE";
969 case SEC_E_WRONG_PRINCIPAL:
970 txt = "SEC_E_WRONG_PRINCIPAL";
972 case SEC_I_COMPLETE_AND_CONTINUE:
973 txt = "SEC_I_COMPLETE_AND_CONTINUE";
975 case SEC_I_COMPLETE_NEEDED:
976 txt = "SEC_I_COMPLETE_NEEDED";
978 case SEC_I_CONTEXT_EXPIRED:
979 txt = "SEC_I_CONTEXT_EXPIRED";
981 case SEC_I_CONTINUE_NEEDED:
982 txt = "SEC_I_CONTINUE_NEEDED";
984 case SEC_I_INCOMPLETE_CREDENTIALS:
985 txt = "SEC_I_INCOMPLETE_CREDENTIALS";
987 case SEC_I_LOCAL_LOGON:
988 txt = "SEC_I_LOCAL_LOGON";
990 case SEC_I_NO_LSA_CONTEXT:
991 txt = "SEC_I_NO_LSA_CONTEXT";
993 case SEC_I_RENEGOTIATE:
994 txt = "SEC_I_RENEGOTIATE";
996 case SEC_I_SIGNATURE_NEEDED:
997 txt = "SEC_I_SIGNATURE_NEEDED";
1000 txt = "Unknown error";
1004 strncpy(outbuf, txt, outmax);
1005 else if(err == SEC_E_ILLEGAL_MESSAGE)
1006 snprintf(outbuf, outmax,
1007 "SEC_E_ILLEGAL_MESSAGE (0x%08X) - This error usually occurs "
1008 "when a fatal SSL/TLS alert is received (e.g. handshake failed). "
1009 "More detail may be available in the Windows System event log.",
1013 snprintf(txtbuf, sizeof(txtbuf), "%s (0x%08X)", txt, err);
1014 txtbuf[sizeof(txtbuf)-1] = '\0';
1021 if(FormatMessage(FORMAT_MESSAGE_FROM_SYSTEM |
1022 FORMAT_MESSAGE_IGNORE_INSERTS,
1023 NULL, err, LANG_NEUTRAL,
1024 wbuf, sizeof(wbuf)/sizeof(wchar_t), NULL)) {
1025 wcstombs(msgbuf, wbuf, sizeof(msgbuf)-1);
1026 msg_formatted = TRUE;
1030 if(FormatMessageA(FORMAT_MESSAGE_FROM_SYSTEM |
1031 FORMAT_MESSAGE_IGNORE_INSERTS,
1032 NULL, err, LANG_NEUTRAL,
1033 msgbuf, sizeof(msgbuf)-1, NULL)) {
1034 msg_formatted = TRUE;
1038 msgbuf[sizeof(msgbuf)-1] = '\0';
1039 /* strip trailing '\r\n' or '\n' */
1040 p = strrchr(msgbuf, '\n');
1041 if(p && (p - msgbuf) >= 2)
1043 p = strrchr(msgbuf, '\r');
1044 if(p && (p - msgbuf) >= 1)
1049 snprintf(outbuf, outmax, "%s - %s", str, msg);
1051 strncpy(outbuf, str, outmax);
1054 if(old_errno != ERRNO)
1055 SET_ERRNO(old_errno);
1064 strncpy(outbuf, txt, outmax);
1068 outbuf[outmax] = '\0';
1072 #endif /* USE_WINDOWS_SSPI */