Confirmed users
299
edits
SecurityEngineering/x509Certs: Difference between revisions
→Error Codes in Firefox
| Line 153: | Line 153: | ||
|- | |- | ||
| SEC_ERROR_PATH_LEN_CONSTRAINT_INVALID || || | | SEC_ERROR_PATH_LEN_CONSTRAINT_INVALID || || | ||
|- | |- | ||
| SEC_ERROR_UNKNOWN_CRITICAL_EXTENSION || A certificate contains an extension marked as critical that is not handled by mozilla::pkix || Re-generate the certificate without the extension or with it not marked as critical | | SEC_ERROR_UNKNOWN_CRITICAL_EXTENSION || A certificate contains an extension marked as critical that is not handled by mozilla::pkix || Re-generate the certificate without the extension or with it not marked as critical | ||
|- | |- | ||
| SEC_ERROR_UNKNOWN_ISSUER || || | | SEC_ERROR_UNKNOWN_ISSUER || Either a missing intermediate or root certificate is necessary to verify the certificate || Import the root certificate into Firefox or have the server send the intermediate | ||
|- | |- | ||
| SEC_ERROR_INVALID_KEY || || | | SEC_ERROR_INVALID_KEY || || | ||
| Line 196: | Line 162: | ||
| SEC_ERROR_UNSUPPORTED_KEYALG || || | | SEC_ERROR_UNSUPPORTED_KEYALG || || | ||
|- | |- | ||
| SEC_ERROR_EXPIRED_ISSUER_CERTIFICATE || || | | SEC_ERROR_EXPIRED_ISSUER_CERTIFICATE || An issuer certificate is too old || Re-issue the issuer certificate | ||
|- | |- | ||
| MOZILLA_PKIX_ERROR_CA_CERT_USED_AS_END_ENTITY || || | | MOZILLA_PKIX_ERROR_CA_CERT_USED_AS_END_ENTITY || A certificate with a basic constraints extension with cA:TRUE is being used as an end-entity certificate || Re-generate the end-entity certificate without the basic constraints extension | ||
|- | |- | ||
| MOZILLA_PKIX_ERROR_INADEQUATE_KEY_SIZE || || | | MOZILLA_PKIX_ERROR_INADEQUATE_KEY_SIZE || A certificate has a key that is too small to be secure || Re-generate a larger key and issue a certificate using that key | ||
|- | |- | ||
|} | |} | ||