155682Smarkm# 255682Smarkm# Error messages for the krb5 library 355682Smarkm# 455682Smarkm# This might look like a com_err file, but is not 555682Smarkm# 6178825Sdfrid "$Id: krb5_err.et 21050 2007-06-12 02:00:40Z lha $" 755682Smarkm 855682Smarkmerror_table krb5 955682Smarkm 1055682Smarkmprefix KRB5KDC_ERR 1155682Smarkmerror_code NONE, "No error" 1255682Smarkmerror_code NAME_EXP, "Client's entry in database has expired" 1355682Smarkmerror_code SERVICE_EXP, "Server's entry in database has expired" 1455682Smarkmerror_code BAD_PVNO, "Requested protocol version not supported" 1555682Smarkmerror_code C_OLD_MAST_KVNO, "Client's key is encrypted in an old master key" 1655682Smarkmerror_code S_OLD_MAST_KVNO, "Server's key is encrypted in an old master key" 1755682Smarkmerror_code C_PRINCIPAL_UNKNOWN, "Client not found in Kerberos database" 1855682Smarkmerror_code S_PRINCIPAL_UNKNOWN, "Server not found in Kerberos database" 1955682Smarkmerror_code PRINCIPAL_NOT_UNIQUE,"Principal has multiple entries in Kerberos database" 2055682Smarkmerror_code NULL_KEY, "Client or server has a null key" 2155682Smarkmerror_code CANNOT_POSTDATE, "Ticket is ineligible for postdating" 2255682Smarkmerror_code NEVER_VALID, "Requested effective lifetime is negative or too short" 2355682Smarkmerror_code POLICY, "KDC policy rejects request" 2455682Smarkmerror_code BADOPTION, "KDC can't fulfill requested option" 2555682Smarkmerror_code ETYPE_NOSUPP, "KDC has no support for encryption type" 2655682Smarkmerror_code SUMTYPE_NOSUPP, "KDC has no support for checksum type" 2755682Smarkmerror_code PADATA_TYPE_NOSUPP, "KDC has no support for padata type" 2855682Smarkmerror_code TRTYPE_NOSUPP, "KDC has no support for transited type" 2955682Smarkmerror_code CLIENT_REVOKED, "Clients credentials have been revoked" 3055682Smarkmerror_code SERVICE_REVOKED, "Credentials for server have been revoked" 3155682Smarkmerror_code TGT_REVOKED, "TGT has been revoked" 3255682Smarkmerror_code CLIENT_NOTYET, "Client not yet valid - try again later" 3355682Smarkmerror_code SERVICE_NOTYET, "Server not yet valid - try again later" 3455682Smarkmerror_code KEY_EXPIRED, "Password has expired" 3555682Smarkmerror_code PREAUTH_FAILED, "Preauthentication failed" 3655682Smarkmerror_code PREAUTH_REQUIRED, "Additional pre-authentication required" 3755682Smarkmerror_code SERVER_NOMATCH, "Requested server and ticket don't match" 38178825Sdfrerror_code KDC_ERR_MUST_USE_USER2USER, "Server principal valid for user2user only" 39178825Sdfrerror_code PATH_NOT_ACCEPTED, "KDC Policy rejects transited path" 40178825Sdfrerror_code SVC_UNAVAILABLE, "A service is not available" 4155682Smarkm 4255682Smarkmindex 31 4355682Smarkmprefix KRB5KRB_AP 4455682Smarkmerror_code ERR_BAD_INTEGRITY, "Decrypt integrity check failed" 4555682Smarkmerror_code ERR_TKT_EXPIRED, "Ticket expired" 4655682Smarkmerror_code ERR_TKT_NYV, "Ticket not yet valid" 4755682Smarkmerror_code ERR_REPEAT, "Request is a replay" 4855682Smarkmerror_code ERR_NOT_US, "The ticket isn't for us" 4955682Smarkmerror_code ERR_BADMATCH, "Ticket/authenticator don't match" 5055682Smarkmerror_code ERR_SKEW, "Clock skew too great" 5155682Smarkmerror_code ERR_BADADDR, "Incorrect net address" 5255682Smarkmerror_code ERR_BADVERSION, "Protocol version mismatch" 5355682Smarkmerror_code ERR_MSG_TYPE, "Invalid message type" 5455682Smarkmerror_code ERR_MODIFIED, "Message stream modified" 5555682Smarkmerror_code ERR_BADORDER, "Message out of order" 5657419Smarkmerror_code ERR_ILL_CR_TKT, "Invalid cross-realm ticket" 5755682Smarkmerror_code ERR_BADKEYVER, "Key version is not available" 5855682Smarkmerror_code ERR_NOKEY, "Service key not available" 5955682Smarkmerror_code ERR_MUT_FAIL, "Mutual authentication failed" 6055682Smarkmerror_code ERR_BADDIRECTION, "Incorrect message direction" 6155682Smarkmerror_code ERR_METHOD, "Alternative authentication method required" 6255682Smarkmerror_code ERR_BADSEQ, "Incorrect sequence number in message" 6355682Smarkmerror_code ERR_INAPP_CKSUM, "Inappropriate type of checksum in message" 6455682Smarkmerror_code PATH_NOT_ACCEPTED, "Policy rejects transited path" 6555682Smarkm 6655682Smarkmprefix KRB5KRB_ERR 6755682Smarkmerror_code RESPONSE_TOO_BIG, "Response too big for UDP, retry with TCP" 6855682Smarkm# 53-59 are reserved 6955682Smarkmindex 60 7055682Smarkmerror_code GENERIC, "Generic error (see e-text)" 7155682Smarkmerror_code FIELD_TOOLONG, "Field is too long for this implementation" 7255682Smarkm 7372445Sassar# pkinit 7472445Sassarindex 62 75178825Sdfrprefix KRB5_KDC_ERR 7672445Sassarerror_code CLIENT_NOT_TRUSTED, "Client not trusted" 7772445Sassarerror_code KDC_NOT_TRUSTED, "KDC not trusted" 7872445Sassarerror_code INVALID_SIG, "Invalid signature" 79178825Sdfrerror_code DH_KEY_PARAMETERS_NOT_ACCEPTED, "DH parameters not accepted" 80178825Sdfr 81178825Sdfrindex 68 82178825Sdfrprefix KRB5_KDC_ERR 83178825Sdfrerror_code WRONG_REALM, "Wrong realm" 84178825Sdfr 85178825Sdfrindex 69 8672445Sassarprefix KRB5_AP_ERR 8772445Sassarerror_code USER_TO_USER_REQUIRED, "User to user required" 88178825Sdfr 89178825Sdfrindex 70 90178825Sdfrprefix KRB5_KDC_ERR 9172445Sassarerror_code CANT_VERIFY_CERTIFICATE, "Cannot verify certificate" 92178825Sdfrerror_code INVALID_CERTIFICATE, "Certificate invalid" 93178825Sdfrerror_code REVOKED_CERTIFICATE, "Certificate revoked" 94178825Sdfrerror_code REVOCATION_STATUS_UNKNOWN, "Revocation status unknown" 95178825Sdfrerror_code REVOCATION_STATUS_UNAVAILABLE, "Revocation status unavaible" 96178825Sdfrerror_code CLIENT_NAME_MISMATCH, "Client name mismatch in certificate" 97178825Sdfrerror_code INCONSISTENT_KEY_PURPOSE, "Inconsistent key purpose" 98178825Sdfrerror_code DIGEST_IN_CERT_NOT_ACCEPTED, "Digest in certificate not accepted" 99178825Sdfrerror_code PA_CHECKSUM_MUST_BE_INCLUDED, "paChecksum must be included" 100178825Sdfrerror_code DIGEST_IN_SIGNED_DATA_NOT_ACCEPTED, "Digest in signedData not accepted" 101178825Sdfrerror_code PUBLIC_KEY_ENCRYPTION_NOT_SUPPORTED, "Public key encryption not supported" 10272445Sassar 103178825Sdfr## these are never used 104178825Sdfr#index 80 105178825Sdfr#prefix KRB5_IAKERB 106178825Sdfr#error_code ERR_KDC_NOT_FOUND, "IAKERB proxy could not find a KDC" 107178825Sdfr#error_code ERR_KDC_NO_RESPONSE, "IAKERB proxy never reeived a response from a KDC" 10872445Sassar 109178825Sdfr# 82-127 are reserved 110178825Sdfr 11155682Smarkmindex 128 11255682Smarkmprefix 113178825Sdfrerror_code KRB5_ERR_RCSID, "$Id: krb5_err.et 21050 2007-06-12 02:00:40Z lha $" 11455682Smarkm 11555682Smarkmerror_code KRB5_LIBOS_BADLOCKFLAG, "Invalid flag for file lock mode" 11655682Smarkmerror_code KRB5_LIBOS_CANTREADPWD, "Cannot read password" 11755682Smarkmerror_code KRB5_LIBOS_BADPWDMATCH, "Password mismatch" 11855682Smarkmerror_code KRB5_LIBOS_PWDINTR, "Password read interrupted" 11955682Smarkm 12057419Smarkmerror_code KRB5_PARSE_ILLCHAR, "Invalid character in component name" 12155682Smarkmerror_code KRB5_PARSE_MALFORMED, "Malformed representation of principal" 12255682Smarkm 12355682Smarkmerror_code KRB5_CONFIG_CANTOPEN, "Can't open/find configuration file" 12455682Smarkmerror_code KRB5_CONFIG_BADFORMAT, "Improper format of configuration file" 12555682Smarkmerror_code KRB5_CONFIG_NOTENUFSPACE, "Insufficient space to return complete information" 12655682Smarkm 12755682Smarkmerror_code KRB5_BADMSGTYPE, "Invalid message type specified for encoding" 12855682Smarkm 12955682Smarkmerror_code KRB5_CC_BADNAME, "Credential cache name malformed" 13055682Smarkmerror_code KRB5_CC_UNKNOWN_TYPE, "Unknown credential cache type" 13155682Smarkmerror_code KRB5_CC_NOTFOUND, "Matching credential not found" 13255682Smarkmerror_code KRB5_CC_END, "End of credential cache reached" 13355682Smarkm 13455682Smarkmerror_code KRB5_NO_TKT_SUPPLIED, "Request did not supply a ticket" 13555682Smarkm 13655682Smarkmerror_code KRB5KRB_AP_WRONG_PRINC, "Wrong principal in request" 13755682Smarkmerror_code KRB5KRB_AP_ERR_TKT_INVALID, "Ticket has invalid flag set" 13855682Smarkm 13955682Smarkmerror_code KRB5_PRINC_NOMATCH, "Requested principal and ticket don't match" 14055682Smarkmerror_code KRB5_KDCREP_MODIFIED, "KDC reply did not match expectations" 14155682Smarkmerror_code KRB5_KDCREP_SKEW, "Clock skew too great in KDC reply" 14255682Smarkmerror_code KRB5_IN_TKT_REALM_MISMATCH, "Client/server realm mismatch in initial ticket request" 14355682Smarkm 14455682Smarkmerror_code KRB5_PROG_ETYPE_NOSUPP, "Program lacks support for encryption type" 14555682Smarkmerror_code KRB5_PROG_KEYTYPE_NOSUPP, "Program lacks support for key type" 14655682Smarkmerror_code KRB5_WRONG_ETYPE, "Requested encryption type not used in message" 14755682Smarkmerror_code KRB5_PROG_SUMTYPE_NOSUPP, "Program lacks support for checksum type" 14855682Smarkm 14955682Smarkmerror_code KRB5_REALM_UNKNOWN, "Cannot find KDC for requested realm" 15055682Smarkmerror_code KRB5_SERVICE_UNKNOWN, "Kerberos service unknown" 15155682Smarkmerror_code KRB5_KDC_UNREACH, "Cannot contact any KDC for requested realm" 15255682Smarkmerror_code KRB5_NO_LOCALNAME, "No local name found for principal name" 15355682Smarkm 15455682Smarkmerror_code KRB5_MUTUAL_FAILED, "Mutual authentication failed" 15555682Smarkm 15655682Smarkm# some of these should be combined/supplanted by system codes 15755682Smarkm 15855682Smarkmerror_code KRB5_RC_TYPE_EXISTS, "Replay cache type is already registered" 15955682Smarkmerror_code KRB5_RC_MALLOC, "No more memory to allocate (in replay cache code)" 16055682Smarkmerror_code KRB5_RC_TYPE_NOTFOUND, "Replay cache type is unknown" 16155682Smarkmerror_code KRB5_RC_UNKNOWN, "Generic unknown RC error" 16255682Smarkmerror_code KRB5_RC_REPLAY, "Message is a replay" 16355682Smarkmerror_code KRB5_RC_IO, "Replay I/O operation failed XXX" 16455682Smarkmerror_code KRB5_RC_NOIO, "Replay cache type does not support non-volatile storage" 16555682Smarkmerror_code KRB5_RC_PARSE, "Replay cache name parse/format error" 16655682Smarkm 16755682Smarkmerror_code KRB5_RC_IO_EOF, "End-of-file on replay cache I/O" 16855682Smarkmerror_code KRB5_RC_IO_MALLOC, "No more memory to allocate (in replay cache I/O code)" 16955682Smarkmerror_code KRB5_RC_IO_PERM, "Permission denied in replay cache code" 17055682Smarkmerror_code KRB5_RC_IO_IO, "I/O error in replay cache i/o code" 17155682Smarkmerror_code KRB5_RC_IO_UNKNOWN, "Generic unknown RC/IO error" 17255682Smarkmerror_code KRB5_RC_IO_SPACE, "Insufficient system space to store replay information" 17355682Smarkm 17455682Smarkmerror_code KRB5_TRANS_CANTOPEN, "Can't open/find realm translation file" 17555682Smarkmerror_code KRB5_TRANS_BADFORMAT, "Improper format of realm translation file" 17655682Smarkm 17755682Smarkmerror_code KRB5_LNAME_CANTOPEN, "Can't open/find lname translation database" 17855682Smarkmerror_code KRB5_LNAME_NOTRANS, "No translation available for requested principal" 17955682Smarkmerror_code KRB5_LNAME_BADFORMAT, "Improper format of translation database entry" 18055682Smarkm 18155682Smarkmerror_code KRB5_CRYPTO_INTERNAL, "Cryptosystem internal error" 18255682Smarkm 18355682Smarkmerror_code KRB5_KT_BADNAME, "Key table name malformed" 18455682Smarkmerror_code KRB5_KT_UNKNOWN_TYPE, "Unknown Key table type" 18555682Smarkmerror_code KRB5_KT_NOTFOUND, "Key table entry not found" 18655682Smarkmerror_code KRB5_KT_END, "End of key table reached" 18755682Smarkmerror_code KRB5_KT_NOWRITE, "Cannot write to specified key table" 18855682Smarkmerror_code KRB5_KT_IOERR, "Error writing to key table" 18955682Smarkm 19055682Smarkmerror_code KRB5_NO_TKT_IN_RLM, "Cannot find ticket for requested realm" 19155682Smarkmerror_code KRB5DES_BAD_KEYPAR, "DES key has bad parity" 19255682Smarkmerror_code KRB5DES_WEAK_KEY, "DES key is a weak key" 19355682Smarkm 19455682Smarkmerror_code KRB5_BAD_ENCTYPE, "Bad encryption type" 19555682Smarkmerror_code KRB5_BAD_KEYSIZE, "Key size is incompatible with encryption type" 19655682Smarkmerror_code KRB5_BAD_MSIZE, "Message size is incompatible with encryption type" 19755682Smarkm 19855682Smarkmerror_code KRB5_CC_TYPE_EXISTS, "Credentials cache type is already registered." 19955682Smarkmerror_code KRB5_KT_TYPE_EXISTS, "Key table type is already registered." 20055682Smarkm 20155682Smarkmerror_code KRB5_CC_IO, "Credentials cache I/O operation failed XXX" 20255682Smarkmerror_code KRB5_FCC_PERM, "Credentials cache file permissions incorrect" 20355682Smarkmerror_code KRB5_FCC_NOFILE, "No credentials cache file found" 20455682Smarkmerror_code KRB5_FCC_INTERNAL, "Internal file credentials cache error" 20555682Smarkmerror_code KRB5_CC_WRITE, "Error writing to credentials cache file" 20655682Smarkmerror_code KRB5_CC_NOMEM, "No more memory to allocate (in credentials cache code)" 20755682Smarkmerror_code KRB5_CC_FORMAT, "Bad format in credentials cache" 208178825Sdfrerror_code KRB5_CC_NOT_KTYPE, "No credentials found with supported encryption types" 20955682Smarkm 21055682Smarkm# errors for dual tgt library calls 21155682Smarkmerror_code KRB5_INVALID_FLAGS, "Invalid KDC option combination (library internal error)" 21255682Smarkmerror_code KRB5_NO_2ND_TKT, "Request missing second ticket" 21355682Smarkm 21455682Smarkmerror_code KRB5_NOCREDS_SUPPLIED, "No credentials supplied to library routine" 21555682Smarkm 21655682Smarkm# errors for sendauth (and recvauth) 21755682Smarkm 21855682Smarkmerror_code KRB5_SENDAUTH_BADAUTHVERS, "Bad sendauth version was sent" 21955682Smarkmerror_code KRB5_SENDAUTH_BADAPPLVERS, "Bad application version was sent (via sendauth)" 22055682Smarkmerror_code KRB5_SENDAUTH_BADRESPONSE, "Bad response (during sendauth exchange)" 22155682Smarkmerror_code KRB5_SENDAUTH_REJECTED, "Server rejected authentication (during sendauth exchange)" 22255682Smarkm 22355682Smarkm# errors for preauthentication 22455682Smarkm 22555682Smarkmerror_code KRB5_PREAUTH_BAD_TYPE, "Unsupported preauthentication type" 22655682Smarkmerror_code KRB5_PREAUTH_NO_KEY, "Required preauthentication key not supplied" 22755682Smarkmerror_code KRB5_PREAUTH_FAILED, "Generic preauthentication failure" 22855682Smarkm 22955682Smarkm# version number errors 23055682Smarkm 23155682Smarkmerror_code KRB5_RCACHE_BADVNO, "Unsupported replay cache format version number" 23255682Smarkmerror_code KRB5_CCACHE_BADVNO, "Unsupported credentials cache format version number" 23355682Smarkmerror_code KRB5_KEYTAB_BADVNO, "Unsupported key table format version number" 23455682Smarkm 23555682Smarkm# 23655682Smarkm# 23755682Smarkm 23855682Smarkmerror_code KRB5_PROG_ATYPE_NOSUPP, "Program lacks support for address type" 23955682Smarkmerror_code KRB5_RC_REQUIRED, "Message replay detection requires rcache parameter" 24055682Smarkmerror_code KRB5_ERR_BAD_HOSTNAME, "Hostname cannot be canonicalized" 24155682Smarkmerror_code KRB5_ERR_HOST_REALM_UNKNOWN, "Cannot determine realm for host" 24255682Smarkmerror_code KRB5_SNAME_UNSUPP_NAMETYPE, "Conversion to service principal undefined for name type" 24355682Smarkm 24455682Smarkmerror_code KRB5KRB_AP_ERR_V4_REPLY, "Initial Ticket response appears to be Version 4" 24555682Smarkmerror_code KRB5_REALM_CANT_RESOLVE, "Cannot resolve KDC for requested realm" 24655682Smarkmerror_code KRB5_TKT_NOT_FORWARDABLE, "Requesting ticket can't get forwardable tickets" 24755682Smarkmerror_code KRB5_FWD_BAD_PRINCIPAL, "Bad principal name while trying to forward credentials" 24855682Smarkm 24955682Smarkmerror_code KRB5_GET_IN_TKT_LOOP, "Looping detected inside krb5_get_in_tkt" 25055682Smarkmerror_code KRB5_CONFIG_NODEFREALM, "Configuration file does not specify default realm" 25155682Smarkm 25255682Smarkmerror_code KRB5_SAM_UNSUPPORTED, "Bad SAM flags in obtain_sam_padata" 253178825Sdfrerror_code KRB5_SAM_INVALID_ETYPE, "Invalid encryption type in SAM challenge" 254178825Sdfrerror_code KRB5_SAM_NO_CHECKSUM, "Missing checksum in SAM challenge" 255178825Sdfrerror_code KRB5_SAM_BAD_CHECKSUM, "Bad checksum in SAM challenge" 25655682Smarkm 257178825Sdfrindex 238 258178825Sdfrerror_code KRB5_OBSOLETE_FN, "Program called an obsolete, deleted function" 259178825Sdfr 260178825Sdfrindex 245 261178825Sdfrerror_code KRB5_ERR_BAD_S2K_PARAMS, "Invalid key generation parameters from KDC" 262178825Sdfrerror_code KRB5_ERR_NO_SERVICE, "Service not available" 263178825Sdfrerror_code KRB5_CC_NOSUPP, "Credential cache function not supported" 264178825Sdfrerror_code KRB5_DELTAT_BADFORMAT, "Invalid format of Kerberos lifetime or clock skew string" 265178825Sdfr 26655682Smarkmend 267