Possible extended error codes returned by LDAP SSL function codes
LDAP SSL function codes return possible extended error codes. The following information serves as a good starting point for the problems.
The following list contains values that are returned by all function
calls:
0 – The task completed successfully. Issued by every function call that completes successfully.
1 – The environment or SSL handle is not valid. The specified handle was not the result of a successful open function call.
2 – The dynamic link library unloaded (
Windowsonly).
3 – An internal error occurred. Report this error to service.
4 – Main memory is insufficient to run the operation.
5 – The handle is in an invalid state for operation, such as running an init operation on a handle twice.
6 – Specified key label not found in keyfile.
7 – Certificate not received from partner.
8 – Certificate validation error.
9 – Error processing cryptography.
10 – Error validating Abstract Syntax Notation (ASN) fields in certificate.
11 – Error connecting to LDAP server.
12 – Internal unknown error. Report problem to service.
101 – Internal unknown error. Report problem to service.
102 – I/O error reading keyfile.
103 – Keyfile has an invalid internal format. Re-create keyfile.
104 – Keyfile has two entries with the same key. Use iKeyman to remove the duplicate key.
105 – Keyfile has two entries with the same label. Use iKeyman to remove the duplicate label.
106 – The keyfile password is used as an integrity check. Either the keyfile is corrupted or the password ID is incorrect.
107 – The default key in the keyfile has an expired certificate. Use iKeyman to remove certificates that are expired.
108 – There was an error for loading one of the GSKdynamic link libraries. Be sure that GSK was installed correctly.
109 – Indicates that a connection is trying to be made in a gsk environment after the GSK_ENVIRONMENT_CLOSE_OPTIONS is set to GSK_DELAYED_ENVIRONMENT_CLOSE and gsk_environment_close() function is called.
201 – Neither the password nor the stash-file name was specified, so the key file could not be initialized.
202 – Unable to open the key file. Either the path was specified incorrectly or the file permissions did not allow the file to be opened.
203 – Unable to generate a temporary key pair. Report this error to service.
204 – A User Name object was specified that is not found.
205 – A Password that is used for an LDAP query is not correct.
206 – An index into the Fail Over list of LDAP servers was not correct.
301 – Indicates that the GSK environment close request was not properly handled. Cause is most likely because of a gsk_secure_socket*() command that is being attempted after a gsk_close_environment() call.
401 – The system date was set to an invalid value.
402 – Neither
SSLv2
norSSLv3
is enabled.403 – The required certificate was not received from partner.
404 – The received certificate was formatted incorrectly.
405 – The received certificate type was not supported.
406 – An IO error occurred on a data read or write.
407 – The specified label in the key file could not be found.
408 – The specified key file password is incorrect. The key file could not be used. The key file might also be corrupted.
409 – In a restricted cryptography environment, the key size is too long to be supported.
410 – An incorrectly formatted SSL message was received from the partner.
411 – The message authentication code (MAC) was not successfully verified.
412 – Unsupported SSL protocol or unsupported certificate type.
413 – The received certificate contained an incorrect signature.
414 – Incorrectly formatted certificate received from partner.
415 – Invalid SSL protocol received from partner.
416 – Internal error. Report problem to service.
417 – The self-signed certificate is not valid.
418 – The read failed. Report this error to service.
419 – The write failed. Report this error to service.
420 – The partner closed the socket before the protocol completed.
421 – The specified V2 cipher is not valid.
422 – The specified V3 cipher is not valid.
423 – Internal error. Report problem to service.
424 – Internal error. Report problem to service.
425 – The handle could not be created. Report this internal error to service.
426 – Initialization failed. Report this internal error to service.
- 427 – When validating a certificate, unable to access the specified LDAP directory.
428 – The specified key did not contain a private key.
429 – A failed attempt was made to load the specified Public-Key Cryptography Standards (PKCS) #11 shared library.
430 – The PKCS #11 driver failed to find the token specified by the caller.
431 – A PKCS #11 token is not present in the slot.
432 – The password or pin to access the PKCS #11 token is invalid.
433 – The SSL header received was not a properly SSLV2 formatted header.
501 – The buffer size is negative or zero.
502 – Used with non-blocking input or output. See the non-blocking section for usage.
601 – SSLV3 is required for reset_cipher, and the connection uses SSLV2.
602 – An invalid ID was specified for the gsk_secure_soc_misc function call.
701 – The function call has an invalid ID. This may also be caused by specifying an environment handle when a handle for an SSL connection must be used.
702 – The attribute has a negative length, which is invalid.
703 – The enumeration value is invalid for the specified enumeration type.
704 – Invalid parameter list for replacing the SID cache routines.
705 – When setting a numeric attribute, the specified value is invalid for the specific attribute being set.
706 – Conflicting parameters have been set for additional certificate validation.