36 It may return a code != X509_V_OK even if X509_verify_cert() did not indicate
59 This value is not intended to remain valid for very long, and remains owned by
109 Unspecified error; should not happen.
113 The issuer certificate of a locally looked up certificate could not be found.
114 This normally means the list of trusted certificates is not complete.
115 To allow any certificate (not only a self-signed one) in the trust store
120 The CRL of a certificate could not be found.
125 The certificate signature could not be decrypted. This means that the actual
126 signature value could not be determined rather than it not matching the
132 The CRL signature could not be decrypted: this means that the actual signature
133 value could not be determined rather than it not matching the expected value.
140 not be read.
150 =item B<X509_V_ERR_CERT_NOT_YET_VALID: certificate is not yet valid>
152 The certificate is not yet valid: the C<notBefore> date is after the
160 =item B<X509_V_ERR_CRL_NOT_YET_VALID: CRL is not yet valid>
162 The CRL is not yet valid.
207 The issuer certificate could not be found: this occurs if the issuer certificate
214 and it is not self-signed and the B<X509_V_FLAG_PARTIAL_CHAIN> flag is not set.
227 The issuer certificate does not have a public key.
237 =item B<X509_V_ERR_CERT_UNTRUSTED: certificate not trusted>
239 The root CA is not marked as trusted for the specified purpose.
248 did not match the issuer name of the current certificate.
254 identifier was present and did not match the authority key identifier current
261 and serial number was present and did not match the authority key identifier of
265 key usage does not include certificate signing>
268 extension does not permit certificate signing.
279 =item B<X509_V_ERR_KEYUSAGE_NO_CRL_SIGN: key usage does not include CRL signing>
281 Key usage does not include CRL signing.
297 key usage does not include digital signature>
299 Key usage does not include digital signature, and therefore cannot sign
303  proxy certificates not allowed, please set the appropriate flag>
305 Proxy certificates not allowed unless the B<X509_V_FLAG_ALLOW_PROXY_CERTS> flag
328 The only CRLs that could be found did not match the scope of the certificate.
332 Some feature of a certificate extension is not supported. Unused.
334 =item B<X509_V_ERR_UNNESTED_RESOURCE: RFC 3779 resource not subset of parent's resources>
347 name constraints minimum and maximum not supported>
350 this is not supported.
366 The format of the name constraint is not recognised: for example an email
367 address format of a form not mentioned in RFC3280. This could be caused by
368 a garbage extension or some new feature not currently supported.
439 Returned by the verify callback to indicate that the certificate is not
450 The issuer's public key is not of the type required by the signature in
461 A CA certificate is invalid. Either it is not a CA or its extensions are not
466 No TLS records were configured to validate the raw public key, or DANE was not
482 numerical value of the unknown code is returned in a static buffer. This is not
501 Licensed under the Apache License 2.0 (the "License").  You may not use

Last Index update Sat Jul 06 12:06:14 UTC 2024

Dedicated to & Maintained by Room-11