]>
Commit | Line | Data |
---|---|---|
700d8687 OM |
1 | /* |
2 | * Error message information | |
3 | * | |
4 | * Copyright (C) 2006-2015, ARM Limited, All Rights Reserved | |
5 | * SPDX-License-Identifier: GPL-2.0 | |
6 | * | |
7 | * This program is free software; you can redistribute it and/or modify | |
8 | * it under the terms of the GNU General Public License as published by | |
9 | * the Free Software Foundation; either version 2 of the License, or | |
10 | * (at your option) any later version. | |
11 | * | |
12 | * This program is distributed in the hope that it will be useful, | |
13 | * but WITHOUT ANY WARRANTY; without even the implied warranty of | |
14 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | |
15 | * GNU General Public License for more details. | |
16 | * | |
17 | * You should have received a copy of the GNU General Public License along | |
18 | * with this program; if not, write to the Free Software Foundation, Inc., | |
19 | * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA. | |
20 | * | |
21 | * This file is part of mbed TLS (https://tls.mbed.org) | |
22 | */ | |
23 | ||
24 | #if !defined(MBEDTLS_CONFIG_FILE) | |
25 | #include "mbedtls/config.h" | |
26 | #else | |
27 | #include MBEDTLS_CONFIG_FILE | |
28 | #endif | |
29 | ||
30 | #if defined(MBEDTLS_ERROR_C) || defined(MBEDTLS_ERROR_STRERROR_DUMMY) | |
31 | #include "mbedtls/error.h" | |
32 | #include <string.h> | |
33 | #endif | |
34 | ||
35 | #if defined(MBEDTLS_PLATFORM_C) | |
36 | #include "mbedtls/platform.h" | |
37 | #else | |
38 | #define mbedtls_snprintf snprintf | |
39 | #define mbedtls_time_t time_t | |
40 | #endif | |
41 | ||
42 | #if defined(MBEDTLS_ERROR_C) | |
43 | ||
44 | #include <stdio.h> | |
45 | ||
46 | #if defined(MBEDTLS_AES_C) | |
47 | #include "mbedtls/aes.h" | |
48 | #endif | |
49 | ||
50 | #if defined(MBEDTLS_ARC4_C) | |
51 | #include "mbedtls/arc4.h" | |
52 | #endif | |
53 | ||
54 | #if defined(MBEDTLS_ARIA_C) | |
55 | #include "mbedtls/aria.h" | |
56 | #endif | |
57 | ||
58 | #if defined(MBEDTLS_BASE64_C) | |
59 | #include "mbedtls/base64.h" | |
60 | #endif | |
61 | ||
62 | #if defined(MBEDTLS_BIGNUM_C) | |
63 | #include "mbedtls/bignum.h" | |
64 | #endif | |
65 | ||
66 | #if defined(MBEDTLS_BLOWFISH_C) | |
67 | #include "mbedtls/blowfish.h" | |
68 | #endif | |
69 | ||
70 | #if defined(MBEDTLS_CAMELLIA_C) | |
71 | #include "mbedtls/camellia.h" | |
72 | #endif | |
73 | ||
74 | #if defined(MBEDTLS_CCM_C) | |
75 | #include "mbedtls/ccm.h" | |
76 | #endif | |
77 | ||
78 | #if defined(MBEDTLS_CHACHA20_C) | |
79 | #include "mbedtls/chacha20.h" | |
80 | #endif | |
81 | ||
82 | #if defined(MBEDTLS_CHACHAPOLY_C) | |
83 | #include "mbedtls/chachapoly.h" | |
84 | #endif | |
85 | ||
86 | #if defined(MBEDTLS_CIPHER_C) | |
87 | #include "mbedtls/cipher.h" | |
88 | #endif | |
89 | ||
90 | #if defined(MBEDTLS_CMAC_C) | |
91 | #include "mbedtls/cmac.h" | |
92 | #endif | |
93 | ||
94 | #if defined(MBEDTLS_CTR_DRBG_C) | |
95 | #include "mbedtls/ctr_drbg.h" | |
96 | #endif | |
97 | ||
98 | #if defined(MBEDTLS_DES_C) | |
99 | #include "mbedtls/des.h" | |
100 | #endif | |
101 | ||
102 | #if defined(MBEDTLS_DHM_C) | |
103 | #include "mbedtls/dhm.h" | |
104 | #endif | |
105 | ||
106 | #if defined(MBEDTLS_ECP_C) | |
107 | #include "mbedtls/ecp.h" | |
108 | #endif | |
109 | ||
110 | #if defined(MBEDTLS_ENTROPY_C) | |
111 | #include "mbedtls/entropy.h" | |
112 | #endif | |
113 | ||
114 | #if defined(MBEDTLS_GCM_C) | |
115 | #include "mbedtls/gcm.h" | |
116 | #endif | |
117 | ||
118 | #if defined(MBEDTLS_HKDF_C) | |
119 | #include "mbedtls/hkdf.h" | |
120 | #endif | |
121 | ||
122 | #if defined(MBEDTLS_HMAC_DRBG_C) | |
123 | #include "mbedtls/hmac_drbg.h" | |
124 | #endif | |
125 | ||
126 | #if defined(MBEDTLS_MD_C) | |
127 | #include "mbedtls/md.h" | |
128 | #endif | |
129 | ||
130 | #if defined(MBEDTLS_MD2_C) | |
131 | #include "mbedtls/md2.h" | |
132 | #endif | |
133 | ||
134 | #if defined(MBEDTLS_MD4_C) | |
135 | #include "mbedtls/md4.h" | |
136 | #endif | |
137 | ||
138 | #if defined(MBEDTLS_MD5_C) | |
139 | #include "mbedtls/md5.h" | |
140 | #endif | |
141 | ||
142 | #if defined(MBEDTLS_NET_C) | |
143 | #include "mbedtls/net_sockets.h" | |
144 | #endif | |
145 | ||
146 | #if defined(MBEDTLS_OID_C) | |
147 | #include "mbedtls/oid.h" | |
148 | #endif | |
149 | ||
150 | #if defined(MBEDTLS_PADLOCK_C) | |
151 | #include "mbedtls/padlock.h" | |
152 | #endif | |
153 | ||
154 | #if defined(MBEDTLS_PEM_PARSE_C) || defined(MBEDTLS_PEM_WRITE_C) | |
155 | #include "mbedtls/pem.h" | |
156 | #endif | |
157 | ||
158 | #if defined(MBEDTLS_PK_C) | |
159 | #include "mbedtls/pk.h" | |
160 | #endif | |
161 | ||
162 | #if defined(MBEDTLS_PKCS12_C) | |
163 | #include "mbedtls/pkcs12.h" | |
164 | #endif | |
165 | ||
166 | #if defined(MBEDTLS_PKCS5_C) | |
167 | #include "mbedtls/pkcs5.h" | |
168 | #endif | |
169 | ||
170 | #if defined(MBEDTLS_POLY1305_C) | |
171 | #include "mbedtls/poly1305.h" | |
172 | #endif | |
173 | ||
174 | #if defined(MBEDTLS_RIPEMD160_C) | |
175 | #include "mbedtls/ripemd160.h" | |
176 | #endif | |
177 | ||
178 | #if defined(MBEDTLS_RSA_C) | |
179 | #include "mbedtls/rsa.h" | |
180 | #endif | |
181 | ||
182 | #if defined(MBEDTLS_SHA1_C) | |
183 | #include "mbedtls/sha1.h" | |
184 | #endif | |
185 | ||
186 | #if defined(MBEDTLS_SHA256_C) | |
187 | #include "mbedtls/sha256.h" | |
188 | #endif | |
189 | ||
190 | #if defined(MBEDTLS_SHA512_C) | |
191 | #include "mbedtls/sha512.h" | |
192 | #endif | |
193 | ||
194 | #if defined(MBEDTLS_SSL_TLS_C) | |
195 | #include "mbedtls/ssl.h" | |
196 | #endif | |
197 | ||
198 | #if defined(MBEDTLS_THREADING_C) | |
199 | #include "mbedtls/threading.h" | |
200 | #endif | |
201 | ||
202 | #if defined(MBEDTLS_X509_USE_C) || defined(MBEDTLS_X509_CREATE_C) | |
203 | #include "mbedtls/x509.h" | |
204 | #endif | |
205 | ||
206 | #if defined(MBEDTLS_XTEA_C) | |
207 | #include "mbedtls/xtea.h" | |
208 | #endif | |
209 | ||
210 | ||
211 | void mbedtls_strerror( int ret, char *buf, size_t buflen ) | |
212 | { | |
213 | size_t len; | |
214 | int use_ret; | |
215 | ||
216 | if( buflen == 0 ) | |
217 | return; | |
218 | ||
219 | memset( buf, 0x00, buflen ); | |
220 | ||
221 | if( ret < 0 ) | |
222 | ret = -ret; | |
223 | ||
224 | if( ret & 0xFF80 ) | |
225 | { | |
226 | use_ret = ret & 0xFF80; | |
227 | ||
228 | // High level error codes | |
229 | // | |
230 | // BEGIN generated code | |
231 | #if defined(MBEDTLS_CIPHER_C) | |
232 | if( use_ret == -(MBEDTLS_ERR_CIPHER_FEATURE_UNAVAILABLE) ) | |
233 | mbedtls_snprintf( buf, buflen, "CIPHER - The selected feature is not available" ); | |
234 | if( use_ret == -(MBEDTLS_ERR_CIPHER_BAD_INPUT_DATA) ) | |
235 | mbedtls_snprintf( buf, buflen, "CIPHER - Bad input parameters" ); | |
236 | if( use_ret == -(MBEDTLS_ERR_CIPHER_ALLOC_FAILED) ) | |
237 | mbedtls_snprintf( buf, buflen, "CIPHER - Failed to allocate memory" ); | |
238 | if( use_ret == -(MBEDTLS_ERR_CIPHER_INVALID_PADDING) ) | |
239 | mbedtls_snprintf( buf, buflen, "CIPHER - Input data contains invalid padding and is rejected" ); | |
240 | if( use_ret == -(MBEDTLS_ERR_CIPHER_FULL_BLOCK_EXPECTED) ) | |
241 | mbedtls_snprintf( buf, buflen, "CIPHER - Decryption of block requires a full block" ); | |
242 | if( use_ret == -(MBEDTLS_ERR_CIPHER_AUTH_FAILED) ) | |
243 | mbedtls_snprintf( buf, buflen, "CIPHER - Authentication failed (for AEAD modes)" ); | |
244 | if( use_ret == -(MBEDTLS_ERR_CIPHER_INVALID_CONTEXT) ) | |
245 | mbedtls_snprintf( buf, buflen, "CIPHER - The context is invalid. For example, because it was freed" ); | |
246 | if( use_ret == -(MBEDTLS_ERR_CIPHER_HW_ACCEL_FAILED) ) | |
247 | mbedtls_snprintf( buf, buflen, "CIPHER - Cipher hardware accelerator failed" ); | |
248 | #endif /* MBEDTLS_CIPHER_C */ | |
249 | ||
250 | #if defined(MBEDTLS_DHM_C) | |
251 | if( use_ret == -(MBEDTLS_ERR_DHM_BAD_INPUT_DATA) ) | |
252 | mbedtls_snprintf( buf, buflen, "DHM - Bad input parameters" ); | |
253 | if( use_ret == -(MBEDTLS_ERR_DHM_READ_PARAMS_FAILED) ) | |
254 | mbedtls_snprintf( buf, buflen, "DHM - Reading of the DHM parameters failed" ); | |
255 | if( use_ret == -(MBEDTLS_ERR_DHM_MAKE_PARAMS_FAILED) ) | |
256 | mbedtls_snprintf( buf, buflen, "DHM - Making of the DHM parameters failed" ); | |
257 | if( use_ret == -(MBEDTLS_ERR_DHM_READ_PUBLIC_FAILED) ) | |
258 | mbedtls_snprintf( buf, buflen, "DHM - Reading of the public values failed" ); | |
259 | if( use_ret == -(MBEDTLS_ERR_DHM_MAKE_PUBLIC_FAILED) ) | |
260 | mbedtls_snprintf( buf, buflen, "DHM - Making of the public value failed" ); | |
261 | if( use_ret == -(MBEDTLS_ERR_DHM_CALC_SECRET_FAILED) ) | |
262 | mbedtls_snprintf( buf, buflen, "DHM - Calculation of the DHM secret failed" ); | |
263 | if( use_ret == -(MBEDTLS_ERR_DHM_INVALID_FORMAT) ) | |
264 | mbedtls_snprintf( buf, buflen, "DHM - The ASN.1 data is not formatted correctly" ); | |
265 | if( use_ret == -(MBEDTLS_ERR_DHM_ALLOC_FAILED) ) | |
266 | mbedtls_snprintf( buf, buflen, "DHM - Allocation of memory failed" ); | |
267 | if( use_ret == -(MBEDTLS_ERR_DHM_FILE_IO_ERROR) ) | |
268 | mbedtls_snprintf( buf, buflen, "DHM - Read or write of file failed" ); | |
269 | if( use_ret == -(MBEDTLS_ERR_DHM_HW_ACCEL_FAILED) ) | |
270 | mbedtls_snprintf( buf, buflen, "DHM - DHM hardware accelerator failed" ); | |
271 | if( use_ret == -(MBEDTLS_ERR_DHM_SET_GROUP_FAILED) ) | |
272 | mbedtls_snprintf( buf, buflen, "DHM - Setting the modulus and generator failed" ); | |
273 | #endif /* MBEDTLS_DHM_C */ | |
274 | ||
275 | #if defined(MBEDTLS_ECP_C) | |
276 | if( use_ret == -(MBEDTLS_ERR_ECP_BAD_INPUT_DATA) ) | |
277 | mbedtls_snprintf( buf, buflen, "ECP - Bad input parameters to function" ); | |
278 | if( use_ret == -(MBEDTLS_ERR_ECP_BUFFER_TOO_SMALL) ) | |
279 | mbedtls_snprintf( buf, buflen, "ECP - The buffer is too small to write to" ); | |
280 | if( use_ret == -(MBEDTLS_ERR_ECP_FEATURE_UNAVAILABLE) ) | |
281 | mbedtls_snprintf( buf, buflen, "ECP - The requested feature is not available, for example, the requested curve is not supported" ); | |
282 | if( use_ret == -(MBEDTLS_ERR_ECP_VERIFY_FAILED) ) | |
283 | mbedtls_snprintf( buf, buflen, "ECP - The signature is not valid" ); | |
284 | if( use_ret == -(MBEDTLS_ERR_ECP_ALLOC_FAILED) ) | |
285 | mbedtls_snprintf( buf, buflen, "ECP - Memory allocation failed" ); | |
286 | if( use_ret == -(MBEDTLS_ERR_ECP_RANDOM_FAILED) ) | |
287 | mbedtls_snprintf( buf, buflen, "ECP - Generation of random value, such as ephemeral key, failed" ); | |
288 | if( use_ret == -(MBEDTLS_ERR_ECP_INVALID_KEY) ) | |
289 | mbedtls_snprintf( buf, buflen, "ECP - Invalid private or public key" ); | |
290 | if( use_ret == -(MBEDTLS_ERR_ECP_SIG_LEN_MISMATCH) ) | |
291 | mbedtls_snprintf( buf, buflen, "ECP - The buffer contains a valid signature followed by more data" ); | |
292 | if( use_ret == -(MBEDTLS_ERR_ECP_HW_ACCEL_FAILED) ) | |
293 | mbedtls_snprintf( buf, buflen, "ECP - The ECP hardware accelerator failed" ); | |
294 | #endif /* MBEDTLS_ECP_C */ | |
295 | ||
296 | #if defined(MBEDTLS_MD_C) | |
297 | if( use_ret == -(MBEDTLS_ERR_MD_FEATURE_UNAVAILABLE) ) | |
298 | mbedtls_snprintf( buf, buflen, "MD - The selected feature is not available" ); | |
299 | if( use_ret == -(MBEDTLS_ERR_MD_BAD_INPUT_DATA) ) | |
300 | mbedtls_snprintf( buf, buflen, "MD - Bad input parameters to function" ); | |
301 | if( use_ret == -(MBEDTLS_ERR_MD_ALLOC_FAILED) ) | |
302 | mbedtls_snprintf( buf, buflen, "MD - Failed to allocate memory" ); | |
303 | if( use_ret == -(MBEDTLS_ERR_MD_FILE_IO_ERROR) ) | |
304 | mbedtls_snprintf( buf, buflen, "MD - Opening or reading of file failed" ); | |
305 | if( use_ret == -(MBEDTLS_ERR_MD_HW_ACCEL_FAILED) ) | |
306 | mbedtls_snprintf( buf, buflen, "MD - MD hardware accelerator failed" ); | |
307 | #endif /* MBEDTLS_MD_C */ | |
308 | ||
309 | #if defined(MBEDTLS_PEM_PARSE_C) || defined(MBEDTLS_PEM_WRITE_C) | |
310 | if( use_ret == -(MBEDTLS_ERR_PEM_NO_HEADER_FOOTER_PRESENT) ) | |
311 | mbedtls_snprintf( buf, buflen, "PEM - No PEM header or footer found" ); | |
312 | if( use_ret == -(MBEDTLS_ERR_PEM_INVALID_DATA) ) | |
313 | mbedtls_snprintf( buf, buflen, "PEM - PEM string is not as expected" ); | |
314 | if( use_ret == -(MBEDTLS_ERR_PEM_ALLOC_FAILED) ) | |
315 | mbedtls_snprintf( buf, buflen, "PEM - Failed to allocate memory" ); | |
316 | if( use_ret == -(MBEDTLS_ERR_PEM_INVALID_ENC_IV) ) | |
317 | mbedtls_snprintf( buf, buflen, "PEM - RSA IV is not in hex-format" ); | |
318 | if( use_ret == -(MBEDTLS_ERR_PEM_UNKNOWN_ENC_ALG) ) | |
319 | mbedtls_snprintf( buf, buflen, "PEM - Unsupported key encryption algorithm" ); | |
320 | if( use_ret == -(MBEDTLS_ERR_PEM_PASSWORD_REQUIRED) ) | |
321 | mbedtls_snprintf( buf, buflen, "PEM - Private key password can't be empty" ); | |
322 | if( use_ret == -(MBEDTLS_ERR_PEM_PASSWORD_MISMATCH) ) | |
323 | mbedtls_snprintf( buf, buflen, "PEM - Given private key password does not allow for correct decryption" ); | |
324 | if( use_ret == -(MBEDTLS_ERR_PEM_FEATURE_UNAVAILABLE) ) | |
325 | mbedtls_snprintf( buf, buflen, "PEM - Unavailable feature, e.g. hashing/encryption combination" ); | |
326 | if( use_ret == -(MBEDTLS_ERR_PEM_BAD_INPUT_DATA) ) | |
327 | mbedtls_snprintf( buf, buflen, "PEM - Bad input parameters to function" ); | |
328 | #endif /* MBEDTLS_PEM_PARSE_C || MBEDTLS_PEM_WRITE_C */ | |
329 | ||
330 | #if defined(MBEDTLS_PK_C) | |
331 | if( use_ret == -(MBEDTLS_ERR_PK_ALLOC_FAILED) ) | |
332 | mbedtls_snprintf( buf, buflen, "PK - Memory allocation failed" ); | |
333 | if( use_ret == -(MBEDTLS_ERR_PK_TYPE_MISMATCH) ) | |
334 | mbedtls_snprintf( buf, buflen, "PK - Type mismatch, eg attempt to encrypt with an ECDSA key" ); | |
335 | if( use_ret == -(MBEDTLS_ERR_PK_BAD_INPUT_DATA) ) | |
336 | mbedtls_snprintf( buf, buflen, "PK - Bad input parameters to function" ); | |
337 | if( use_ret == -(MBEDTLS_ERR_PK_FILE_IO_ERROR) ) | |
338 | mbedtls_snprintf( buf, buflen, "PK - Read/write of file failed" ); | |
339 | if( use_ret == -(MBEDTLS_ERR_PK_KEY_INVALID_VERSION) ) | |
340 | mbedtls_snprintf( buf, buflen, "PK - Unsupported key version" ); | |
341 | if( use_ret == -(MBEDTLS_ERR_PK_KEY_INVALID_FORMAT) ) | |
342 | mbedtls_snprintf( buf, buflen, "PK - Invalid key tag or value" ); | |
343 | if( use_ret == -(MBEDTLS_ERR_PK_UNKNOWN_PK_ALG) ) | |
344 | mbedtls_snprintf( buf, buflen, "PK - Key algorithm is unsupported (only RSA and EC are supported)" ); | |
345 | if( use_ret == -(MBEDTLS_ERR_PK_PASSWORD_REQUIRED) ) | |
346 | mbedtls_snprintf( buf, buflen, "PK - Private key password can't be empty" ); | |
347 | if( use_ret == -(MBEDTLS_ERR_PK_PASSWORD_MISMATCH) ) | |
348 | mbedtls_snprintf( buf, buflen, "PK - Given private key password does not allow for correct decryption" ); | |
349 | if( use_ret == -(MBEDTLS_ERR_PK_INVALID_PUBKEY) ) | |
350 | mbedtls_snprintf( buf, buflen, "PK - The pubkey tag or value is invalid (only RSA and EC are supported)" ); | |
351 | if( use_ret == -(MBEDTLS_ERR_PK_INVALID_ALG) ) | |
352 | mbedtls_snprintf( buf, buflen, "PK - The algorithm tag or value is invalid" ); | |
353 | if( use_ret == -(MBEDTLS_ERR_PK_UNKNOWN_NAMED_CURVE) ) | |
354 | mbedtls_snprintf( buf, buflen, "PK - Elliptic curve is unsupported (only NIST curves are supported)" ); | |
355 | if( use_ret == -(MBEDTLS_ERR_PK_FEATURE_UNAVAILABLE) ) | |
356 | mbedtls_snprintf( buf, buflen, "PK - Unavailable feature, e.g. RSA disabled for RSA key" ); | |
357 | if( use_ret == -(MBEDTLS_ERR_PK_SIG_LEN_MISMATCH) ) | |
358 | mbedtls_snprintf( buf, buflen, "PK - The buffer contains a valid signature followed by more data" ); | |
359 | if( use_ret == -(MBEDTLS_ERR_PK_HW_ACCEL_FAILED) ) | |
360 | mbedtls_snprintf( buf, buflen, "PK - PK hardware accelerator failed" ); | |
361 | #endif /* MBEDTLS_PK_C */ | |
362 | ||
363 | #if defined(MBEDTLS_PKCS12_C) | |
364 | if( use_ret == -(MBEDTLS_ERR_PKCS12_BAD_INPUT_DATA) ) | |
365 | mbedtls_snprintf( buf, buflen, "PKCS12 - Bad input parameters to function" ); | |
366 | if( use_ret == -(MBEDTLS_ERR_PKCS12_FEATURE_UNAVAILABLE) ) | |
367 | mbedtls_snprintf( buf, buflen, "PKCS12 - Feature not available, e.g. unsupported encryption scheme" ); | |
368 | if( use_ret == -(MBEDTLS_ERR_PKCS12_PBE_INVALID_FORMAT) ) | |
369 | mbedtls_snprintf( buf, buflen, "PKCS12 - PBE ASN.1 data not as expected" ); | |
370 | if( use_ret == -(MBEDTLS_ERR_PKCS12_PASSWORD_MISMATCH) ) | |
371 | mbedtls_snprintf( buf, buflen, "PKCS12 - Given private key password does not allow for correct decryption" ); | |
372 | #endif /* MBEDTLS_PKCS12_C */ | |
373 | ||
374 | #if defined(MBEDTLS_PKCS5_C) | |
375 | if( use_ret == -(MBEDTLS_ERR_PKCS5_BAD_INPUT_DATA) ) | |
376 | mbedtls_snprintf( buf, buflen, "PKCS5 - Bad input parameters to function" ); | |
377 | if( use_ret == -(MBEDTLS_ERR_PKCS5_INVALID_FORMAT) ) | |
378 | mbedtls_snprintf( buf, buflen, "PKCS5 - Unexpected ASN.1 data" ); | |
379 | if( use_ret == -(MBEDTLS_ERR_PKCS5_FEATURE_UNAVAILABLE) ) | |
380 | mbedtls_snprintf( buf, buflen, "PKCS5 - Requested encryption or digest alg not available" ); | |
381 | if( use_ret == -(MBEDTLS_ERR_PKCS5_PASSWORD_MISMATCH) ) | |
382 | mbedtls_snprintf( buf, buflen, "PKCS5 - Given private key password does not allow for correct decryption" ); | |
383 | #endif /* MBEDTLS_PKCS5_C */ | |
384 | ||
385 | #if defined(MBEDTLS_RSA_C) | |
386 | if( use_ret == -(MBEDTLS_ERR_RSA_BAD_INPUT_DATA) ) | |
387 | mbedtls_snprintf( buf, buflen, "RSA - Bad input parameters to function" ); | |
388 | if( use_ret == -(MBEDTLS_ERR_RSA_INVALID_PADDING) ) | |
389 | mbedtls_snprintf( buf, buflen, "RSA - Input data contains invalid padding and is rejected" ); | |
390 | if( use_ret == -(MBEDTLS_ERR_RSA_KEY_GEN_FAILED) ) | |
391 | mbedtls_snprintf( buf, buflen, "RSA - Something failed during generation of a key" ); | |
392 | if( use_ret == -(MBEDTLS_ERR_RSA_KEY_CHECK_FAILED) ) | |
393 | mbedtls_snprintf( buf, buflen, "RSA - Key failed to pass the validity check of the library" ); | |
394 | if( use_ret == -(MBEDTLS_ERR_RSA_PUBLIC_FAILED) ) | |
395 | mbedtls_snprintf( buf, buflen, "RSA - The public key operation failed" ); | |
396 | if( use_ret == -(MBEDTLS_ERR_RSA_PRIVATE_FAILED) ) | |
397 | mbedtls_snprintf( buf, buflen, "RSA - The private key operation failed" ); | |
398 | if( use_ret == -(MBEDTLS_ERR_RSA_VERIFY_FAILED) ) | |
399 | mbedtls_snprintf( buf, buflen, "RSA - The PKCS#1 verification failed" ); | |
400 | if( use_ret == -(MBEDTLS_ERR_RSA_OUTPUT_TOO_LARGE) ) | |
401 | mbedtls_snprintf( buf, buflen, "RSA - The output buffer for decryption is not large enough" ); | |
402 | if( use_ret == -(MBEDTLS_ERR_RSA_RNG_FAILED) ) | |
403 | mbedtls_snprintf( buf, buflen, "RSA - The random generator failed to generate non-zeros" ); | |
404 | if( use_ret == -(MBEDTLS_ERR_RSA_UNSUPPORTED_OPERATION) ) | |
405 | mbedtls_snprintf( buf, buflen, "RSA - The implementation does not offer the requested operation, for example, because of security violations or lack of functionality" ); | |
406 | if( use_ret == -(MBEDTLS_ERR_RSA_HW_ACCEL_FAILED) ) | |
407 | mbedtls_snprintf( buf, buflen, "RSA - RSA hardware accelerator failed" ); | |
408 | #endif /* MBEDTLS_RSA_C */ | |
409 | ||
410 | #if defined(MBEDTLS_SSL_TLS_C) | |
411 | if( use_ret == -(MBEDTLS_ERR_SSL_FEATURE_UNAVAILABLE) ) | |
412 | mbedtls_snprintf( buf, buflen, "SSL - The requested feature is not available" ); | |
413 | if( use_ret == -(MBEDTLS_ERR_SSL_BAD_INPUT_DATA) ) | |
414 | mbedtls_snprintf( buf, buflen, "SSL - Bad input parameters to function" ); | |
415 | if( use_ret == -(MBEDTLS_ERR_SSL_INVALID_MAC) ) | |
416 | mbedtls_snprintf( buf, buflen, "SSL - Verification of the message MAC failed" ); | |
417 | if( use_ret == -(MBEDTLS_ERR_SSL_INVALID_RECORD) ) | |
418 | mbedtls_snprintf( buf, buflen, "SSL - An invalid SSL record was received" ); | |
419 | if( use_ret == -(MBEDTLS_ERR_SSL_CONN_EOF) ) | |
420 | mbedtls_snprintf( buf, buflen, "SSL - The connection indicated an EOF" ); | |
421 | if( use_ret == -(MBEDTLS_ERR_SSL_UNKNOWN_CIPHER) ) | |
422 | mbedtls_snprintf( buf, buflen, "SSL - An unknown cipher was received" ); | |
423 | if( use_ret == -(MBEDTLS_ERR_SSL_NO_CIPHER_CHOSEN) ) | |
424 | mbedtls_snprintf( buf, buflen, "SSL - The server has no ciphersuites in common with the client" ); | |
425 | if( use_ret == -(MBEDTLS_ERR_SSL_NO_RNG) ) | |
426 | mbedtls_snprintf( buf, buflen, "SSL - No RNG was provided to the SSL module" ); | |
427 | if( use_ret == -(MBEDTLS_ERR_SSL_NO_CLIENT_CERTIFICATE) ) | |
428 | mbedtls_snprintf( buf, buflen, "SSL - No client certification received from the client, but required by the authentication mode" ); | |
429 | if( use_ret == -(MBEDTLS_ERR_SSL_CERTIFICATE_TOO_LARGE) ) | |
430 | mbedtls_snprintf( buf, buflen, "SSL - Our own certificate(s) is/are too large to send in an SSL message" ); | |
431 | if( use_ret == -(MBEDTLS_ERR_SSL_CERTIFICATE_REQUIRED) ) | |
432 | mbedtls_snprintf( buf, buflen, "SSL - The own certificate is not set, but needed by the server" ); | |
433 | if( use_ret == -(MBEDTLS_ERR_SSL_PRIVATE_KEY_REQUIRED) ) | |
434 | mbedtls_snprintf( buf, buflen, "SSL - The own private key or pre-shared key is not set, but needed" ); | |
435 | if( use_ret == -(MBEDTLS_ERR_SSL_CA_CHAIN_REQUIRED) ) | |
436 | mbedtls_snprintf( buf, buflen, "SSL - No CA Chain is set, but required to operate" ); | |
437 | if( use_ret == -(MBEDTLS_ERR_SSL_UNEXPECTED_MESSAGE) ) | |
438 | mbedtls_snprintf( buf, buflen, "SSL - An unexpected message was received from our peer" ); | |
439 | if( use_ret == -(MBEDTLS_ERR_SSL_FATAL_ALERT_MESSAGE) ) | |
440 | { | |
441 | mbedtls_snprintf( buf, buflen, "SSL - A fatal alert message was received from our peer" ); | |
442 | return; | |
443 | } | |
444 | if( use_ret == -(MBEDTLS_ERR_SSL_PEER_VERIFY_FAILED) ) | |
445 | mbedtls_snprintf( buf, buflen, "SSL - Verification of our peer failed" ); | |
446 | if( use_ret == -(MBEDTLS_ERR_SSL_PEER_CLOSE_NOTIFY) ) | |
447 | mbedtls_snprintf( buf, buflen, "SSL - The peer notified us that the connection is going to be closed" ); | |
448 | if( use_ret == -(MBEDTLS_ERR_SSL_BAD_HS_CLIENT_HELLO) ) | |
449 | mbedtls_snprintf( buf, buflen, "SSL - Processing of the ClientHello handshake message failed" ); | |
450 | if( use_ret == -(MBEDTLS_ERR_SSL_BAD_HS_SERVER_HELLO) ) | |
451 | mbedtls_snprintf( buf, buflen, "SSL - Processing of the ServerHello handshake message failed" ); | |
452 | if( use_ret == -(MBEDTLS_ERR_SSL_BAD_HS_CERTIFICATE) ) | |
453 | mbedtls_snprintf( buf, buflen, "SSL - Processing of the Certificate handshake message failed" ); | |
454 | if( use_ret == -(MBEDTLS_ERR_SSL_BAD_HS_CERTIFICATE_REQUEST) ) | |
455 | mbedtls_snprintf( buf, buflen, "SSL - Processing of the CertificateRequest handshake message failed" ); | |
456 | if( use_ret == -(MBEDTLS_ERR_SSL_BAD_HS_SERVER_KEY_EXCHANGE) ) | |
457 | mbedtls_snprintf( buf, buflen, "SSL - Processing of the ServerKeyExchange handshake message failed" ); | |
458 | if( use_ret == -(MBEDTLS_ERR_SSL_BAD_HS_SERVER_HELLO_DONE) ) | |
459 | mbedtls_snprintf( buf, buflen, "SSL - Processing of the ServerHelloDone handshake message failed" ); | |
460 | if( use_ret == -(MBEDTLS_ERR_SSL_BAD_HS_CLIENT_KEY_EXCHANGE) ) | |
461 | mbedtls_snprintf( buf, buflen, "SSL - Processing of the ClientKeyExchange handshake message failed" ); | |
462 | if( use_ret == -(MBEDTLS_ERR_SSL_BAD_HS_CLIENT_KEY_EXCHANGE_RP) ) | |
463 | mbedtls_snprintf( buf, buflen, "SSL - Processing of the ClientKeyExchange handshake message failed in DHM / ECDH Read Public" ); | |
464 | if( use_ret == -(MBEDTLS_ERR_SSL_BAD_HS_CLIENT_KEY_EXCHANGE_CS) ) | |
465 | mbedtls_snprintf( buf, buflen, "SSL - Processing of the ClientKeyExchange handshake message failed in DHM / ECDH Calculate Secret" ); | |
466 | if( use_ret == -(MBEDTLS_ERR_SSL_BAD_HS_CERTIFICATE_VERIFY) ) | |
467 | mbedtls_snprintf( buf, buflen, "SSL - Processing of the CertificateVerify handshake message failed" ); | |
468 | if( use_ret == -(MBEDTLS_ERR_SSL_BAD_HS_CHANGE_CIPHER_SPEC) ) | |
469 | mbedtls_snprintf( buf, buflen, "SSL - Processing of the ChangeCipherSpec handshake message failed" ); | |
470 | if( use_ret == -(MBEDTLS_ERR_SSL_BAD_HS_FINISHED) ) | |
471 | mbedtls_snprintf( buf, buflen, "SSL - Processing of the Finished handshake message failed" ); | |
472 | if( use_ret == -(MBEDTLS_ERR_SSL_ALLOC_FAILED) ) | |
473 | mbedtls_snprintf( buf, buflen, "SSL - Memory allocation failed" ); | |
474 | if( use_ret == -(MBEDTLS_ERR_SSL_HW_ACCEL_FAILED) ) | |
475 | mbedtls_snprintf( buf, buflen, "SSL - Hardware acceleration function returned with error" ); | |
476 | if( use_ret == -(MBEDTLS_ERR_SSL_HW_ACCEL_FALLTHROUGH) ) | |
477 | mbedtls_snprintf( buf, buflen, "SSL - Hardware acceleration function skipped / left alone data" ); | |
478 | if( use_ret == -(MBEDTLS_ERR_SSL_COMPRESSION_FAILED) ) | |
479 | mbedtls_snprintf( buf, buflen, "SSL - Processing of the compression / decompression failed" ); | |
480 | if( use_ret == -(MBEDTLS_ERR_SSL_BAD_HS_PROTOCOL_VERSION) ) | |
481 | mbedtls_snprintf( buf, buflen, "SSL - Handshake protocol not within min/max boundaries" ); | |
482 | if( use_ret == -(MBEDTLS_ERR_SSL_BAD_HS_NEW_SESSION_TICKET) ) | |
483 | mbedtls_snprintf( buf, buflen, "SSL - Processing of the NewSessionTicket handshake message failed" ); | |
484 | if( use_ret == -(MBEDTLS_ERR_SSL_SESSION_TICKET_EXPIRED) ) | |
485 | mbedtls_snprintf( buf, buflen, "SSL - Session ticket has expired" ); | |
486 | if( use_ret == -(MBEDTLS_ERR_SSL_PK_TYPE_MISMATCH) ) | |
487 | mbedtls_snprintf( buf, buflen, "SSL - Public key type mismatch (eg, asked for RSA key exchange and presented EC key)" ); | |
488 | if( use_ret == -(MBEDTLS_ERR_SSL_UNKNOWN_IDENTITY) ) | |
489 | mbedtls_snprintf( buf, buflen, "SSL - Unknown identity received (eg, PSK identity)" ); | |
490 | if( use_ret == -(MBEDTLS_ERR_SSL_INTERNAL_ERROR) ) | |
491 | mbedtls_snprintf( buf, buflen, "SSL - Internal error (eg, unexpected failure in lower-level module)" ); | |
492 | if( use_ret == -(MBEDTLS_ERR_SSL_COUNTER_WRAPPING) ) | |
493 | mbedtls_snprintf( buf, buflen, "SSL - A counter would wrap (eg, too many messages exchanged)" ); | |
494 | if( use_ret == -(MBEDTLS_ERR_SSL_WAITING_SERVER_HELLO_RENEGO) ) | |
495 | mbedtls_snprintf( buf, buflen, "SSL - Unexpected message at ServerHello in renegotiation" ); | |
496 | if( use_ret == -(MBEDTLS_ERR_SSL_HELLO_VERIFY_REQUIRED) ) | |
497 | mbedtls_snprintf( buf, buflen, "SSL - DTLS client must retry for hello verification" ); | |
498 | if( use_ret == -(MBEDTLS_ERR_SSL_BUFFER_TOO_SMALL) ) | |
499 | mbedtls_snprintf( buf, buflen, "SSL - A buffer is too small to receive or write a message" ); | |
500 | if( use_ret == -(MBEDTLS_ERR_SSL_NO_USABLE_CIPHERSUITE) ) | |
501 | mbedtls_snprintf( buf, buflen, "SSL - None of the common ciphersuites is usable (eg, no suitable certificate, see debug messages)" ); | |
502 | if( use_ret == -(MBEDTLS_ERR_SSL_WANT_READ) ) | |
503 | mbedtls_snprintf( buf, buflen, "SSL - No data of requested type currently available on underlying transport" ); | |
504 | if( use_ret == -(MBEDTLS_ERR_SSL_WANT_WRITE) ) | |
505 | mbedtls_snprintf( buf, buflen, "SSL - Connection requires a write call" ); | |
506 | if( use_ret == -(MBEDTLS_ERR_SSL_TIMEOUT) ) | |
507 | mbedtls_snprintf( buf, buflen, "SSL - The operation timed out" ); | |
508 | if( use_ret == -(MBEDTLS_ERR_SSL_CLIENT_RECONNECT) ) | |
509 | mbedtls_snprintf( buf, buflen, "SSL - The client initiated a reconnect from the same port" ); | |
510 | if( use_ret == -(MBEDTLS_ERR_SSL_UNEXPECTED_RECORD) ) | |
511 | mbedtls_snprintf( buf, buflen, "SSL - Record header looks valid but is not expected" ); | |
512 | if( use_ret == -(MBEDTLS_ERR_SSL_NON_FATAL) ) | |
513 | mbedtls_snprintf( buf, buflen, "SSL - The alert message received indicates a non-fatal error" ); | |
514 | if( use_ret == -(MBEDTLS_ERR_SSL_INVALID_VERIFY_HASH) ) | |
515 | mbedtls_snprintf( buf, buflen, "SSL - Couldn't set the hash for verifying CertificateVerify" ); | |
516 | if( use_ret == -(MBEDTLS_ERR_SSL_CONTINUE_PROCESSING) ) | |
517 | mbedtls_snprintf( buf, buflen, "SSL - Internal-only message signaling that further message-processing should be done" ); | |
518 | if( use_ret == -(MBEDTLS_ERR_SSL_ASYNC_IN_PROGRESS) ) | |
519 | mbedtls_snprintf( buf, buflen, "SSL - The asynchronous operation is not completed yet" ); | |
520 | if( use_ret == -(MBEDTLS_ERR_SSL_EARLY_MESSAGE) ) | |
521 | mbedtls_snprintf( buf, buflen, "SSL - Internal-only message signaling that a message arrived early" ); | |
522 | #endif /* MBEDTLS_SSL_TLS_C */ | |
523 | ||
524 | #if defined(MBEDTLS_X509_USE_C) || defined(MBEDTLS_X509_CREATE_C) | |
525 | if( use_ret == -(MBEDTLS_ERR_X509_FEATURE_UNAVAILABLE) ) | |
526 | mbedtls_snprintf( buf, buflen, "X509 - Unavailable feature, e.g. RSA hashing/encryption combination" ); | |
527 | if( use_ret == -(MBEDTLS_ERR_X509_UNKNOWN_OID) ) | |
528 | mbedtls_snprintf( buf, buflen, "X509 - Requested OID is unknown" ); | |
529 | if( use_ret == -(MBEDTLS_ERR_X509_INVALID_FORMAT) ) | |
530 | mbedtls_snprintf( buf, buflen, "X509 - The CRT/CRL/CSR format is invalid, e.g. different type expected" ); | |
531 | if( use_ret == -(MBEDTLS_ERR_X509_INVALID_VERSION) ) | |
532 | mbedtls_snprintf( buf, buflen, "X509 - The CRT/CRL/CSR version element is invalid" ); | |
533 | if( use_ret == -(MBEDTLS_ERR_X509_INVALID_SERIAL) ) | |
534 | mbedtls_snprintf( buf, buflen, "X509 - The serial tag or value is invalid" ); | |
535 | if( use_ret == -(MBEDTLS_ERR_X509_INVALID_ALG) ) | |
536 | mbedtls_snprintf( buf, buflen, "X509 - The algorithm tag or value is invalid" ); | |
537 | if( use_ret == -(MBEDTLS_ERR_X509_INVALID_NAME) ) | |
538 | mbedtls_snprintf( buf, buflen, "X509 - The name tag or value is invalid" ); | |
539 | if( use_ret == -(MBEDTLS_ERR_X509_INVALID_DATE) ) | |
540 | mbedtls_snprintf( buf, buflen, "X509 - The date tag or value is invalid" ); | |
541 | if( use_ret == -(MBEDTLS_ERR_X509_INVALID_SIGNATURE) ) | |
542 | mbedtls_snprintf( buf, buflen, "X509 - The signature tag or value invalid" ); | |
543 | if( use_ret == -(MBEDTLS_ERR_X509_INVALID_EXTENSIONS) ) | |
544 | mbedtls_snprintf( buf, buflen, "X509 - The extension tag or value is invalid" ); | |
545 | if( use_ret == -(MBEDTLS_ERR_X509_UNKNOWN_VERSION) ) | |
546 | mbedtls_snprintf( buf, buflen, "X509 - CRT/CRL/CSR has an unsupported version number" ); | |
547 | if( use_ret == -(MBEDTLS_ERR_X509_UNKNOWN_SIG_ALG) ) | |
548 | mbedtls_snprintf( buf, buflen, "X509 - Signature algorithm (oid) is unsupported" ); | |
549 | if( use_ret == -(MBEDTLS_ERR_X509_SIG_MISMATCH) ) | |
550 | mbedtls_snprintf( buf, buflen, "X509 - Signature algorithms do not match. (see \\c ::mbedtls_x509_crt sig_oid)" ); | |
551 | if( use_ret == -(MBEDTLS_ERR_X509_CERT_VERIFY_FAILED) ) | |
552 | mbedtls_snprintf( buf, buflen, "X509 - Certificate verification failed, e.g. CRL, CA or signature check failed" ); | |
553 | if( use_ret == -(MBEDTLS_ERR_X509_CERT_UNKNOWN_FORMAT) ) | |
554 | mbedtls_snprintf( buf, buflen, "X509 - Format not recognized as DER or PEM" ); | |
555 | if( use_ret == -(MBEDTLS_ERR_X509_BAD_INPUT_DATA) ) | |
556 | mbedtls_snprintf( buf, buflen, "X509 - Input invalid" ); | |
557 | if( use_ret == -(MBEDTLS_ERR_X509_ALLOC_FAILED) ) | |
558 | mbedtls_snprintf( buf, buflen, "X509 - Allocation of memory failed" ); | |
559 | if( use_ret == -(MBEDTLS_ERR_X509_FILE_IO_ERROR) ) | |
560 | mbedtls_snprintf( buf, buflen, "X509 - Read/write of file failed" ); | |
561 | if( use_ret == -(MBEDTLS_ERR_X509_BUFFER_TOO_SMALL) ) | |
562 | mbedtls_snprintf( buf, buflen, "X509 - Destination buffer is too small" ); | |
563 | if( use_ret == -(MBEDTLS_ERR_X509_FATAL_ERROR) ) | |
564 | mbedtls_snprintf( buf, buflen, "X509 - A fatal error occured, eg the chain is too long or the vrfy callback failed" ); | |
565 | #endif /* MBEDTLS_X509_USE_C || MBEDTLS_X509_CREATE_C */ | |
566 | // END generated code | |
567 | ||
568 | if( strlen( buf ) == 0 ) | |
569 | mbedtls_snprintf( buf, buflen, "UNKNOWN ERROR CODE (%04X)", use_ret ); | |
570 | } | |
571 | ||
572 | use_ret = ret & ~0xFF80; | |
573 | ||
574 | if( use_ret == 0 ) | |
575 | return; | |
576 | ||
577 | // If high level code is present, make a concatenation between both | |
578 | // error strings. | |
579 | // | |
580 | len = strlen( buf ); | |
581 | ||
582 | if( len > 0 ) | |
583 | { | |
584 | if( buflen - len < 5 ) | |
585 | return; | |
586 | ||
587 | mbedtls_snprintf( buf + len, buflen - len, " : " ); | |
588 | ||
589 | buf += len + 3; | |
590 | buflen -= len + 3; | |
591 | } | |
592 | ||
593 | // Low level error codes | |
594 | // | |
595 | // BEGIN generated code | |
596 | #if defined(MBEDTLS_AES_C) | |
597 | if( use_ret == -(MBEDTLS_ERR_AES_INVALID_KEY_LENGTH) ) | |
598 | mbedtls_snprintf( buf, buflen, "AES - Invalid key length" ); | |
599 | if( use_ret == -(MBEDTLS_ERR_AES_INVALID_INPUT_LENGTH) ) | |
600 | mbedtls_snprintf( buf, buflen, "AES - Invalid data input length" ); | |
601 | if( use_ret == -(MBEDTLS_ERR_AES_BAD_INPUT_DATA) ) | |
602 | mbedtls_snprintf( buf, buflen, "AES - Invalid input data" ); | |
603 | if( use_ret == -(MBEDTLS_ERR_AES_FEATURE_UNAVAILABLE) ) | |
604 | mbedtls_snprintf( buf, buflen, "AES - Feature not available. For example, an unsupported AES key size" ); | |
605 | if( use_ret == -(MBEDTLS_ERR_AES_HW_ACCEL_FAILED) ) | |
606 | mbedtls_snprintf( buf, buflen, "AES - AES hardware accelerator failed" ); | |
607 | #endif /* MBEDTLS_AES_C */ | |
608 | ||
609 | #if defined(MBEDTLS_ARC4_C) | |
610 | if( use_ret == -(MBEDTLS_ERR_ARC4_HW_ACCEL_FAILED) ) | |
611 | mbedtls_snprintf( buf, buflen, "ARC4 - ARC4 hardware accelerator failed" ); | |
612 | #endif /* MBEDTLS_ARC4_C */ | |
613 | ||
614 | #if defined(MBEDTLS_ARIA_C) | |
615 | if( use_ret == -(MBEDTLS_ERR_ARIA_INVALID_KEY_LENGTH) ) | |
616 | mbedtls_snprintf( buf, buflen, "ARIA - Invalid key length" ); | |
617 | if( use_ret == -(MBEDTLS_ERR_ARIA_INVALID_INPUT_LENGTH) ) | |
618 | mbedtls_snprintf( buf, buflen, "ARIA - Invalid data input length" ); | |
619 | if( use_ret == -(MBEDTLS_ERR_ARIA_FEATURE_UNAVAILABLE) ) | |
620 | mbedtls_snprintf( buf, buflen, "ARIA - Feature not available. For example, an unsupported ARIA key size" ); | |
621 | if( use_ret == -(MBEDTLS_ERR_ARIA_HW_ACCEL_FAILED) ) | |
622 | mbedtls_snprintf( buf, buflen, "ARIA - ARIA hardware accelerator failed" ); | |
623 | #endif /* MBEDTLS_ARIA_C */ | |
624 | ||
625 | #if defined(MBEDTLS_ASN1_PARSE_C) | |
626 | if( use_ret == -(MBEDTLS_ERR_ASN1_OUT_OF_DATA) ) | |
627 | mbedtls_snprintf( buf, buflen, "ASN1 - Out of data when parsing an ASN1 data structure" ); | |
628 | if( use_ret == -(MBEDTLS_ERR_ASN1_UNEXPECTED_TAG) ) | |
629 | mbedtls_snprintf( buf, buflen, "ASN1 - ASN1 tag was of an unexpected value" ); | |
630 | if( use_ret == -(MBEDTLS_ERR_ASN1_INVALID_LENGTH) ) | |
631 | mbedtls_snprintf( buf, buflen, "ASN1 - Error when trying to determine the length or invalid length" ); | |
632 | if( use_ret == -(MBEDTLS_ERR_ASN1_LENGTH_MISMATCH) ) | |
633 | mbedtls_snprintf( buf, buflen, "ASN1 - Actual length differs from expected length" ); | |
634 | if( use_ret == -(MBEDTLS_ERR_ASN1_INVALID_DATA) ) | |
635 | mbedtls_snprintf( buf, buflen, "ASN1 - Data is invalid. (not used)" ); | |
636 | if( use_ret == -(MBEDTLS_ERR_ASN1_ALLOC_FAILED) ) | |
637 | mbedtls_snprintf( buf, buflen, "ASN1 - Memory allocation failed" ); | |
638 | if( use_ret == -(MBEDTLS_ERR_ASN1_BUF_TOO_SMALL) ) | |
639 | mbedtls_snprintf( buf, buflen, "ASN1 - Buffer too small when writing ASN.1 data structure" ); | |
640 | #endif /* MBEDTLS_ASN1_PARSE_C */ | |
641 | ||
642 | #if defined(MBEDTLS_BASE64_C) | |
643 | if( use_ret == -(MBEDTLS_ERR_BASE64_BUFFER_TOO_SMALL) ) | |
644 | mbedtls_snprintf( buf, buflen, "BASE64 - Output buffer too small" ); | |
645 | if( use_ret == -(MBEDTLS_ERR_BASE64_INVALID_CHARACTER) ) | |
646 | mbedtls_snprintf( buf, buflen, "BASE64 - Invalid character in input" ); | |
647 | #endif /* MBEDTLS_BASE64_C */ | |
648 | ||
649 | #if defined(MBEDTLS_BIGNUM_C) | |
650 | if( use_ret == -(MBEDTLS_ERR_MPI_FILE_IO_ERROR) ) | |
651 | mbedtls_snprintf( buf, buflen, "BIGNUM - An error occurred while reading from or writing to a file" ); | |
652 | if( use_ret == -(MBEDTLS_ERR_MPI_BAD_INPUT_DATA) ) | |
653 | mbedtls_snprintf( buf, buflen, "BIGNUM - Bad input parameters to function" ); | |
654 | if( use_ret == -(MBEDTLS_ERR_MPI_INVALID_CHARACTER) ) | |
655 | mbedtls_snprintf( buf, buflen, "BIGNUM - There is an invalid character in the digit string" ); | |
656 | if( use_ret == -(MBEDTLS_ERR_MPI_BUFFER_TOO_SMALL) ) | |
657 | mbedtls_snprintf( buf, buflen, "BIGNUM - The buffer is too small to write to" ); | |
658 | if( use_ret == -(MBEDTLS_ERR_MPI_NEGATIVE_VALUE) ) | |
659 | mbedtls_snprintf( buf, buflen, "BIGNUM - The input arguments are negative or result in illegal output" ); | |
660 | if( use_ret == -(MBEDTLS_ERR_MPI_DIVISION_BY_ZERO) ) | |
661 | mbedtls_snprintf( buf, buflen, "BIGNUM - The input argument for division is zero, which is not allowed" ); | |
662 | if( use_ret == -(MBEDTLS_ERR_MPI_NOT_ACCEPTABLE) ) | |
663 | mbedtls_snprintf( buf, buflen, "BIGNUM - The input arguments are not acceptable" ); | |
664 | if( use_ret == -(MBEDTLS_ERR_MPI_ALLOC_FAILED) ) | |
665 | mbedtls_snprintf( buf, buflen, "BIGNUM - Memory allocation failed" ); | |
666 | #endif /* MBEDTLS_BIGNUM_C */ | |
667 | ||
668 | #if defined(MBEDTLS_BLOWFISH_C) | |
669 | if( use_ret == -(MBEDTLS_ERR_BLOWFISH_INVALID_KEY_LENGTH) ) | |
670 | mbedtls_snprintf( buf, buflen, "BLOWFISH - Invalid key length" ); | |
671 | if( use_ret == -(MBEDTLS_ERR_BLOWFISH_HW_ACCEL_FAILED) ) | |
672 | mbedtls_snprintf( buf, buflen, "BLOWFISH - Blowfish hardware accelerator failed" ); | |
673 | if( use_ret == -(MBEDTLS_ERR_BLOWFISH_INVALID_INPUT_LENGTH) ) | |
674 | mbedtls_snprintf( buf, buflen, "BLOWFISH - Invalid data input length" ); | |
675 | #endif /* MBEDTLS_BLOWFISH_C */ | |
676 | ||
677 | #if defined(MBEDTLS_CAMELLIA_C) | |
678 | if( use_ret == -(MBEDTLS_ERR_CAMELLIA_INVALID_KEY_LENGTH) ) | |
679 | mbedtls_snprintf( buf, buflen, "CAMELLIA - Invalid key length" ); | |
680 | if( use_ret == -(MBEDTLS_ERR_CAMELLIA_INVALID_INPUT_LENGTH) ) | |
681 | mbedtls_snprintf( buf, buflen, "CAMELLIA - Invalid data input length" ); | |
682 | if( use_ret == -(MBEDTLS_ERR_CAMELLIA_HW_ACCEL_FAILED) ) | |
683 | mbedtls_snprintf( buf, buflen, "CAMELLIA - Camellia hardware accelerator failed" ); | |
684 | #endif /* MBEDTLS_CAMELLIA_C */ | |
685 | ||
686 | #if defined(MBEDTLS_CCM_C) | |
687 | if( use_ret == -(MBEDTLS_ERR_CCM_BAD_INPUT) ) | |
688 | mbedtls_snprintf( buf, buflen, "CCM - Bad input parameters to the function" ); | |
689 | if( use_ret == -(MBEDTLS_ERR_CCM_AUTH_FAILED) ) | |
690 | mbedtls_snprintf( buf, buflen, "CCM - Authenticated decryption failed" ); | |
691 | if( use_ret == -(MBEDTLS_ERR_CCM_HW_ACCEL_FAILED) ) | |
692 | mbedtls_snprintf( buf, buflen, "CCM - CCM hardware accelerator failed" ); | |
693 | #endif /* MBEDTLS_CCM_C */ | |
694 | ||
695 | #if defined(MBEDTLS_CHACHA20_C) | |
696 | if( use_ret == -(MBEDTLS_ERR_CHACHA20_BAD_INPUT_DATA) ) | |
697 | mbedtls_snprintf( buf, buflen, "CHACHA20 - Invalid input parameter(s)" ); | |
698 | if( use_ret == -(MBEDTLS_ERR_CHACHA20_FEATURE_UNAVAILABLE) ) | |
699 | mbedtls_snprintf( buf, buflen, "CHACHA20 - Feature not available. For example, s part of the API is not implemented" ); | |
700 | if( use_ret == -(MBEDTLS_ERR_CHACHA20_HW_ACCEL_FAILED) ) | |
701 | mbedtls_snprintf( buf, buflen, "CHACHA20 - Chacha20 hardware accelerator failed" ); | |
702 | #endif /* MBEDTLS_CHACHA20_C */ | |
703 | ||
704 | #if defined(MBEDTLS_CHACHAPOLY_C) | |
705 | if( use_ret == -(MBEDTLS_ERR_CHACHAPOLY_BAD_STATE) ) | |
706 | mbedtls_snprintf( buf, buflen, "CHACHAPOLY - The requested operation is not permitted in the current state" ); | |
707 | if( use_ret == -(MBEDTLS_ERR_CHACHAPOLY_AUTH_FAILED) ) | |
708 | mbedtls_snprintf( buf, buflen, "CHACHAPOLY - Authenticated decryption failed: data was not authentic" ); | |
709 | #endif /* MBEDTLS_CHACHAPOLY_C */ | |
710 | ||
711 | #if defined(MBEDTLS_CMAC_C) | |
712 | if( use_ret == -(MBEDTLS_ERR_CMAC_HW_ACCEL_FAILED) ) | |
713 | mbedtls_snprintf( buf, buflen, "CMAC - CMAC hardware accelerator failed" ); | |
714 | #endif /* MBEDTLS_CMAC_C */ | |
715 | ||
716 | #if defined(MBEDTLS_CTR_DRBG_C) | |
717 | if( use_ret == -(MBEDTLS_ERR_CTR_DRBG_ENTROPY_SOURCE_FAILED) ) | |
718 | mbedtls_snprintf( buf, buflen, "CTR_DRBG - The entropy source failed" ); | |
719 | if( use_ret == -(MBEDTLS_ERR_CTR_DRBG_REQUEST_TOO_BIG) ) | |
720 | mbedtls_snprintf( buf, buflen, "CTR_DRBG - The requested random buffer length is too big" ); | |
721 | if( use_ret == -(MBEDTLS_ERR_CTR_DRBG_INPUT_TOO_BIG) ) | |
722 | mbedtls_snprintf( buf, buflen, "CTR_DRBG - The input (entropy + additional data) is too large" ); | |
723 | if( use_ret == -(MBEDTLS_ERR_CTR_DRBG_FILE_IO_ERROR) ) | |
724 | mbedtls_snprintf( buf, buflen, "CTR_DRBG - Read or write error in file" ); | |
725 | #endif /* MBEDTLS_CTR_DRBG_C */ | |
726 | ||
727 | #if defined(MBEDTLS_DES_C) | |
728 | if( use_ret == -(MBEDTLS_ERR_DES_INVALID_INPUT_LENGTH) ) | |
729 | mbedtls_snprintf( buf, buflen, "DES - The data input has an invalid length" ); | |
730 | if( use_ret == -(MBEDTLS_ERR_DES_HW_ACCEL_FAILED) ) | |
731 | mbedtls_snprintf( buf, buflen, "DES - DES hardware accelerator failed" ); | |
732 | #endif /* MBEDTLS_DES_C */ | |
733 | ||
734 | #if defined(MBEDTLS_ENTROPY_C) | |
735 | if( use_ret == -(MBEDTLS_ERR_ENTROPY_SOURCE_FAILED) ) | |
736 | mbedtls_snprintf( buf, buflen, "ENTROPY - Critical entropy source failure" ); | |
737 | if( use_ret == -(MBEDTLS_ERR_ENTROPY_MAX_SOURCES) ) | |
738 | mbedtls_snprintf( buf, buflen, "ENTROPY - No more sources can be added" ); | |
739 | if( use_ret == -(MBEDTLS_ERR_ENTROPY_NO_SOURCES_DEFINED) ) | |
740 | mbedtls_snprintf( buf, buflen, "ENTROPY - No sources have been added to poll" ); | |
741 | if( use_ret == -(MBEDTLS_ERR_ENTROPY_NO_STRONG_SOURCE) ) | |
742 | mbedtls_snprintf( buf, buflen, "ENTROPY - No strong sources have been added to poll" ); | |
743 | if( use_ret == -(MBEDTLS_ERR_ENTROPY_FILE_IO_ERROR) ) | |
744 | mbedtls_snprintf( buf, buflen, "ENTROPY - Read/write error in file" ); | |
745 | #endif /* MBEDTLS_ENTROPY_C */ | |
746 | ||
747 | #if defined(MBEDTLS_GCM_C) | |
748 | if( use_ret == -(MBEDTLS_ERR_GCM_AUTH_FAILED) ) | |
749 | mbedtls_snprintf( buf, buflen, "GCM - Authenticated decryption failed" ); | |
750 | if( use_ret == -(MBEDTLS_ERR_GCM_HW_ACCEL_FAILED) ) | |
751 | mbedtls_snprintf( buf, buflen, "GCM - GCM hardware accelerator failed" ); | |
752 | if( use_ret == -(MBEDTLS_ERR_GCM_BAD_INPUT) ) | |
753 | mbedtls_snprintf( buf, buflen, "GCM - Bad input parameters to function" ); | |
754 | #endif /* MBEDTLS_GCM_C */ | |
755 | ||
756 | #if defined(MBEDTLS_HKDF_C) | |
757 | if( use_ret == -(MBEDTLS_ERR_HKDF_BAD_INPUT_DATA) ) | |
758 | mbedtls_snprintf( buf, buflen, "HKDF - Bad input parameters to function" ); | |
759 | #endif /* MBEDTLS_HKDF_C */ | |
760 | ||
761 | #if defined(MBEDTLS_HMAC_DRBG_C) | |
762 | if( use_ret == -(MBEDTLS_ERR_HMAC_DRBG_REQUEST_TOO_BIG) ) | |
763 | mbedtls_snprintf( buf, buflen, "HMAC_DRBG - Too many random requested in single call" ); | |
764 | if( use_ret == -(MBEDTLS_ERR_HMAC_DRBG_INPUT_TOO_BIG) ) | |
765 | mbedtls_snprintf( buf, buflen, "HMAC_DRBG - Input too large (Entropy + additional)" ); | |
766 | if( use_ret == -(MBEDTLS_ERR_HMAC_DRBG_FILE_IO_ERROR) ) | |
767 | mbedtls_snprintf( buf, buflen, "HMAC_DRBG - Read/write error in file" ); | |
768 | if( use_ret == -(MBEDTLS_ERR_HMAC_DRBG_ENTROPY_SOURCE_FAILED) ) | |
769 | mbedtls_snprintf( buf, buflen, "HMAC_DRBG - The entropy source failed" ); | |
770 | #endif /* MBEDTLS_HMAC_DRBG_C */ | |
771 | ||
772 | #if defined(MBEDTLS_MD2_C) | |
773 | if( use_ret == -(MBEDTLS_ERR_MD2_HW_ACCEL_FAILED) ) | |
774 | mbedtls_snprintf( buf, buflen, "MD2 - MD2 hardware accelerator failed" ); | |
775 | #endif /* MBEDTLS_MD2_C */ | |
776 | ||
777 | #if defined(MBEDTLS_MD4_C) | |
778 | if( use_ret == -(MBEDTLS_ERR_MD4_HW_ACCEL_FAILED) ) | |
779 | mbedtls_snprintf( buf, buflen, "MD4 - MD4 hardware accelerator failed" ); | |
780 | #endif /* MBEDTLS_MD4_C */ | |
781 | ||
782 | #if defined(MBEDTLS_MD5_C) | |
783 | if( use_ret == -(MBEDTLS_ERR_MD5_HW_ACCEL_FAILED) ) | |
784 | mbedtls_snprintf( buf, buflen, "MD5 - MD5 hardware accelerator failed" ); | |
785 | #endif /* MBEDTLS_MD5_C */ | |
786 | ||
787 | #if defined(MBEDTLS_NET_C) | |
788 | if( use_ret == -(MBEDTLS_ERR_NET_SOCKET_FAILED) ) | |
789 | mbedtls_snprintf( buf, buflen, "NET - Failed to open a socket" ); | |
790 | if( use_ret == -(MBEDTLS_ERR_NET_CONNECT_FAILED) ) | |
791 | mbedtls_snprintf( buf, buflen, "NET - The connection to the given server / port failed" ); | |
792 | if( use_ret == -(MBEDTLS_ERR_NET_BIND_FAILED) ) | |
793 | mbedtls_snprintf( buf, buflen, "NET - Binding of the socket failed" ); | |
794 | if( use_ret == -(MBEDTLS_ERR_NET_LISTEN_FAILED) ) | |
795 | mbedtls_snprintf( buf, buflen, "NET - Could not listen on the socket" ); | |
796 | if( use_ret == -(MBEDTLS_ERR_NET_ACCEPT_FAILED) ) | |
797 | mbedtls_snprintf( buf, buflen, "NET - Could not accept the incoming connection" ); | |
798 | if( use_ret == -(MBEDTLS_ERR_NET_RECV_FAILED) ) | |
799 | mbedtls_snprintf( buf, buflen, "NET - Reading information from the socket failed" ); | |
800 | if( use_ret == -(MBEDTLS_ERR_NET_SEND_FAILED) ) | |
801 | mbedtls_snprintf( buf, buflen, "NET - Sending information through the socket failed" ); | |
802 | if( use_ret == -(MBEDTLS_ERR_NET_CONN_RESET) ) | |
803 | mbedtls_snprintf( buf, buflen, "NET - Connection was reset by peer" ); | |
804 | if( use_ret == -(MBEDTLS_ERR_NET_UNKNOWN_HOST) ) | |
805 | mbedtls_snprintf( buf, buflen, "NET - Failed to get an IP address for the given hostname" ); | |
806 | if( use_ret == -(MBEDTLS_ERR_NET_BUFFER_TOO_SMALL) ) | |
807 | mbedtls_snprintf( buf, buflen, "NET - Buffer is too small to hold the data" ); | |
808 | if( use_ret == -(MBEDTLS_ERR_NET_INVALID_CONTEXT) ) | |
809 | mbedtls_snprintf( buf, buflen, "NET - The context is invalid, eg because it was free()ed" ); | |
810 | if( use_ret == -(MBEDTLS_ERR_NET_POLL_FAILED) ) | |
811 | mbedtls_snprintf( buf, buflen, "NET - Polling the net context failed" ); | |
812 | if( use_ret == -(MBEDTLS_ERR_NET_BAD_INPUT_DATA) ) | |
813 | mbedtls_snprintf( buf, buflen, "NET - Input invalid" ); | |
814 | #endif /* MBEDTLS_NET_C */ | |
815 | ||
816 | #if defined(MBEDTLS_OID_C) | |
817 | if( use_ret == -(MBEDTLS_ERR_OID_NOT_FOUND) ) | |
818 | mbedtls_snprintf( buf, buflen, "OID - OID is not found" ); | |
819 | if( use_ret == -(MBEDTLS_ERR_OID_BUF_TOO_SMALL) ) | |
820 | mbedtls_snprintf( buf, buflen, "OID - output buffer is too small" ); | |
821 | #endif /* MBEDTLS_OID_C */ | |
822 | ||
823 | #if defined(MBEDTLS_PADLOCK_C) | |
824 | if( use_ret == -(MBEDTLS_ERR_PADLOCK_DATA_MISALIGNED) ) | |
825 | mbedtls_snprintf( buf, buflen, "PADLOCK - Input data should be aligned" ); | |
826 | #endif /* MBEDTLS_PADLOCK_C */ | |
827 | ||
828 | #if defined(MBEDTLS_POLY1305_C) | |
829 | if( use_ret == -(MBEDTLS_ERR_POLY1305_BAD_INPUT_DATA) ) | |
830 | mbedtls_snprintf( buf, buflen, "POLY1305 - Invalid input parameter(s)" ); | |
831 | if( use_ret == -(MBEDTLS_ERR_POLY1305_FEATURE_UNAVAILABLE) ) | |
832 | mbedtls_snprintf( buf, buflen, "POLY1305 - Feature not available. For example, s part of the API is not implemented" ); | |
833 | if( use_ret == -(MBEDTLS_ERR_POLY1305_HW_ACCEL_FAILED) ) | |
834 | mbedtls_snprintf( buf, buflen, "POLY1305 - Poly1305 hardware accelerator failed" ); | |
835 | #endif /* MBEDTLS_POLY1305_C */ | |
836 | ||
837 | #if defined(MBEDTLS_RIPEMD160_C) | |
838 | if( use_ret == -(MBEDTLS_ERR_RIPEMD160_HW_ACCEL_FAILED) ) | |
839 | mbedtls_snprintf( buf, buflen, "RIPEMD160 - RIPEMD160 hardware accelerator failed" ); | |
840 | #endif /* MBEDTLS_RIPEMD160_C */ | |
841 | ||
842 | #if defined(MBEDTLS_SHA1_C) | |
843 | if( use_ret == -(MBEDTLS_ERR_SHA1_HW_ACCEL_FAILED) ) | |
844 | mbedtls_snprintf( buf, buflen, "SHA1 - SHA-1 hardware accelerator failed" ); | |
845 | #endif /* MBEDTLS_SHA1_C */ | |
846 | ||
847 | #if defined(MBEDTLS_SHA256_C) | |
848 | if( use_ret == -(MBEDTLS_ERR_SHA256_HW_ACCEL_FAILED) ) | |
849 | mbedtls_snprintf( buf, buflen, "SHA256 - SHA-256 hardware accelerator failed" ); | |
850 | #endif /* MBEDTLS_SHA256_C */ | |
851 | ||
852 | #if defined(MBEDTLS_SHA512_C) | |
853 | if( use_ret == -(MBEDTLS_ERR_SHA512_HW_ACCEL_FAILED) ) | |
854 | mbedtls_snprintf( buf, buflen, "SHA512 - SHA-512 hardware accelerator failed" ); | |
855 | #endif /* MBEDTLS_SHA512_C */ | |
856 | ||
857 | #if defined(MBEDTLS_THREADING_C) | |
858 | if( use_ret == -(MBEDTLS_ERR_THREADING_FEATURE_UNAVAILABLE) ) | |
859 | mbedtls_snprintf( buf, buflen, "THREADING - The selected feature is not available" ); | |
860 | if( use_ret == -(MBEDTLS_ERR_THREADING_BAD_INPUT_DATA) ) | |
861 | mbedtls_snprintf( buf, buflen, "THREADING - Bad input parameters to function" ); | |
862 | if( use_ret == -(MBEDTLS_ERR_THREADING_MUTEX_ERROR) ) | |
863 | mbedtls_snprintf( buf, buflen, "THREADING - Locking / unlocking / free failed with error code" ); | |
864 | #endif /* MBEDTLS_THREADING_C */ | |
865 | ||
866 | #if defined(MBEDTLS_XTEA_C) | |
867 | if( use_ret == -(MBEDTLS_ERR_XTEA_INVALID_INPUT_LENGTH) ) | |
868 | mbedtls_snprintf( buf, buflen, "XTEA - The data input has an invalid length" ); | |
869 | if( use_ret == -(MBEDTLS_ERR_XTEA_HW_ACCEL_FAILED) ) | |
870 | mbedtls_snprintf( buf, buflen, "XTEA - XTEA hardware accelerator failed" ); | |
871 | #endif /* MBEDTLS_XTEA_C */ | |
872 | // END generated code | |
873 | ||
874 | if( strlen( buf ) != 0 ) | |
875 | return; | |
876 | ||
877 | mbedtls_snprintf( buf, buflen, "UNKNOWN ERROR CODE (%04X)", use_ret ); | |
878 | } | |
879 | ||
880 | #else /* MBEDTLS_ERROR_C */ | |
881 | ||
882 | #if defined(MBEDTLS_ERROR_STRERROR_DUMMY) | |
883 | ||
884 | /* | |
885 | * Provide an non-function in case MBEDTLS_ERROR_C is not defined | |
886 | */ | |
887 | void mbedtls_strerror( int ret, char *buf, size_t buflen ) | |
888 | { | |
889 | ((void) ret); | |
890 | ||
891 | if( buflen > 0 ) | |
892 | buf[0] = '\0'; | |
893 | } | |
894 | ||
895 | #endif /* MBEDTLS_ERROR_STRERROR_DUMMY */ | |
896 | ||
897 | #endif /* MBEDTLS_ERROR_C */ |