GSKit return codes used in AMS messages
This topic describes the IBM Global Security Kit (GSKit) return codes that appear in some Advanced Message Security (AMS) messages.
If you receive a numeric return code generated by GSKit, refer to the following table to determine the message code or the explanation.| Decimal Return Code | Message Code | Explanation |
|---|---|---|
| 0 | GSS_S_MINOR_OK | OK. There is not an error. |
| 0 | GSS_S_MINOR_SUCCESS | OK. There is not an error |
| 1 | GSS_S_MINOR_MEMORY_ALLOCATION_FAILURE | A general purpose memory allocation failure has occurred. |
| 1 | GSS_S_MINOR_INSUFFICIENT_STORAGE | A general purpose memory allocation failure has occurred. |
| 2 | GSS_S_MINOR_NOT_MECHANISM_NAME | The name is not a mechanism name. |
| 3 | GSS_S_MINOR_INVALID_NAME | The provided name is invalid. |
| 4 | GSS_S_MINOR_GSK_ERROR | GSKit has returned an error. |
| 5 | GSS_S_MINOR_NO_MORE_NAME | There are no more names to parse from the name object. |
| 6 | GSS_S_MINOR_MEMBER_NOT_FOUND | An object was referenced from a set, but the requested object could not be found. |
| 7 | GSS_S_MINOR_BAD_QUALITY_OF_PROTECTION_ ALGORITHM | The Quality of Protection algorithm is bad. |
| 8 | GSS_S_MINOR_BAD_QUALITY_OF_SIGNING_ ALGORITHM | The Quality of Signing algorithm is bad. |
| 9 | GSS_S_MINOR_BAD_DIGEST_ENCRYPTION_ ALGORITHM | The digest encryption algorithm is bad. |
| 10 | GSS_S_MINOR_BAD_INPUT | One or more required input parameters is NULL. |
| 11 | GSS_S_MINOR_HANDLE_INVALID | The object handle is invalid. |
| 12 | GSS_S_MINOR_NO_PRIVKEY_IN_KEYRING | There is no entry with a private key in the database. |
| 12 | GSS_S_MINOR_NO_PRIVKEY_IN_DB | There is no entry with a private key in the database. |
| 13 | GSS_S_MINOR_BAD_KEYRING_TYPE | The database entry type is bad. |
| 14 | GSS_S_MINOR_KEYRING_ACCESS_EXCEPTION | An exception in accessing the database has occurred.
Additional information: ensure all GSKit libraries can be accessed and are not corrupted. Additionally, on HP-UX, ensure the SHLIB_PATH is correctly enabled for the program. |
| 15 | GSS_S_MINOR_API_NOT_SUPPORTED | The Application Interface (API) is not supported. |
| 16 | GSS_S_MINOR_CREDENTIAL_STILL_EXISTS | The credential still exists. |
| 17 | GSS_S_MINOR_ENV_STILL_EXISTS | The environment still exists. |
| 18 | GSS_S_MINOR_EXPIRED_CREDENTIAL | The credential has expired. |
| 19 | GSS_S_MINOR_NO_SIGNER | No signer is available for the specified credential. |
| 20 | GSS_S_MINOR_PIDU_HAD_INVALID_CONTENT_ TYPE | The protected independent data unit (PIDU) has an invalid content type. |
| 21 | GSS_S_MINOR_PIDU_HAD_INVALID_CONTENT_ ENCRYPTION_ALGORITHM | The protected independent data unit (PIDU) has an invalid content encryption algorithm. |
| 22 | GSS_S_MINOR_BLOB_ALREADY_EXISTS | The blob already exists. |
| 23 | GSS_S_MINOR_INVALID_MECH | A mechanism-type object identifier is syntactically invalid. |
| 24 | GSS_S_MINOR_MECH_NOT_SUPPORTED | The indicated mechanism type is not supported in this implementation. |
| 25 | GSS_S_MINOR_STATIC_OID | There is an attempt to free an object identifier (OID) which is static and cannot be freed. |
| 26 | GSS_S_MINOR_PIDU_INVALID_SESSION_KEY | The protected independent data unit (PIDU) has a session key that cannot be used to decrypt the data. |
| 27 | GSS_S_MINOR_PIDU_RECIPIENT_INFO_INVALID | The protected independent data unit (PIDU) refers to a certificate that cannot be used to decrypt the session key. |
| 28 | GSS_S_MINOR_PIDU_HAS_UNSUPPORTED_ DIGEST_ALGORITHM | The protected independent data unit (PIDU) has an unsupported digest algorithm. |
| 29 | GSS_S_MINOR_PIDU_HAS_UNSUPPORTED_DIGEST_ ENCRYPTION | The protected independent data unit (PIDU) has an unsupported digest encryption algorithm. |
| 30 | GSS_S_MINOR_SIGNING_NOT_ALLOWED_BY_ENV | The environment is not set up to do a signing
operation.
Additional information: the key usage bits in the certificate might not allow the specified operation. |
| 31 | GSS_S_MINOR_ENCRYPTION_NOT_ALLOWED_BY_ ENV | The environment is not set up to do an encryption
operation.
Additional information: the key usage bits in the certificate might not allow the specified operation. |
| 32 | GSS_S_MINOR_NO_VALID_TARGET_NAMES_IN_ DATABASE | None of the specified names were found in the database. |
| 33 | GSS_S_MINOR_NO_VALID_SIGNERS | No signers could be validated while unprotecting a signed protected independent data unit (PIDU). |
| 34 | GSS_S_MINOR_MULTIPLE_SIGNERS | There are multiple signers in the signed protected independent data unit (PIDU); however, only the first one is being returned. |
| 35 | GSS_S_MINOR_BAD_SEQUENCE | The multi-buffer has been called out of order (For example, end_unprotect is called after start_protect). |
| 36 | GSS_S_MINOR_INVALID_NAMETYPE | The nametype argument provided is invalid. |
| 37 | GSS_S_MINOR_FAILURE | A general internal failure has occurred. |
| 38 | GSS_S_MINOR_BAD_OID | The object identifier provided is syntactically invalid. |
| 39 | GSS_S_MINOR_INVALID_CREDENTIAL | The credential is invalid. |
| 40 | GSS_S_MINOR_INVALID_ENVIRONMENT | The environment is invalid. |
| 41 | GSS_S_MINOR_VERIFY_NOT_ALLOWED_BY_ENV | The environment is not set up to verify the
operation. The environment is not set up to verify the operation.
Additional information: the key usage bits in the certificate might not allow the specified operation. |
| 42 | GSS_S_MINOR_DECRYPTION_NOT_ALLOWED_BY_ ENV | The environment is not set up to do a decryption
operation.
Additional information: the key usage bits in the certificate might not allow the specified operation. |
| 43 | GSS_S_MINOR_UNABLE_TO_DECRYPT_PIDU | The protected independent data unit (PIDU) cannot
be decrypted.
Additional information: ensure the recipients extended attribute on the privacy-protected queue includes the certificate DN of the actual recipient of the message. Additionally, ensure that the public key that the sender has for the recipient DN matches the private key in the recipient's keystore. |
| 44 | GSS_S_MINOR_INVALID_PKCS7_MESSAGE | An Invalid PKCS7 message has been received. |
| 45 | GSS_S_MINOR_USAGE_VALIDATION_FAILED | The application was not built with the right level of GSKit/ACME or is not permitted to use ACME API interface. |
| 46 | GSS_S_MINOR_DIGEST_ERROR | An error occurred during the message digest and the message is possibly corrupted. |
| 47 | GSS_S_MINOR_ENCRYPTION_ERROR | An error occurred during the data encryption and the message is possibly corrupted. |
| 48 | GSS_S_MINOR_DECRYPTION_ERROR | An error occurred during the data decryption and the message is possibly corrupted. |
| 49 | GSS_S_MINOR_ACCELERATOR_NOT_SUPPORTED | The specified card is either not supported or has not been installed properly. |
| 50 | GSS_S_MINOR_PKCS11_TOKEN_NOTPRESENT | The PKCS #11 token could not be found. |
| 51 | GSS_S_MINOR_PKCS11_TOKEN__LABEL_MISMATCH | The PKCS #11 token label was not entered correctly. |
| 52 | GSS_S_MINOR_PKCS11_TOKEN_INVALID_PIN | The user PIN entered for the PKCS #11 token is invalid. |
| 53 | GSS_S_MINOR_PKCS11_LIBRARY_NOT_LOADED | The system could not load the PKCS #11 library. |
| 54 | GSS_S_MINOR_DECODING_ERROR | An error occurred during Base 64 or ASN.1 decoding for either the certificate or distinguished name. |
| 55 | GSS_S_MINOR_SIGN_ERROR | An error occurred during the signing process. |
| 56 | GSS_S_MINOR_VERIFY_ERROR | An error occurred during the signature verification process. |
| 57 | GSS_S_MINOR_RECIPIENT_CERT_NOT_FOUND | The application could not locate the recipient certificate. |
| 58 | GSS_S_MINOR_CERT_HpAS_NO_PRIVATE_KEY | The Certificate does not have a private encryption key. |
| 59 | GSS_S_MINOR_CERT_HAS_BAD_VALIDITY_DATE | The Certificate has a wrong validity date. |
| 60 | GSS_S_MINOR_BAD_CERTIFICATE | The Certificate is not valid. |
| 61 | GSS_S_MINOR_FIPS_NOT_SUPPORTED | The FIPS mode is not supported in this version. |
| 62 | GSS_S_MINOR_SIGNER_CERT_BAD | The signer certificate is not trusted. |
| 63 | GSS_S_MINOR_SIGNER_CERT_BAD_DATE | The signer certificate has a bad validity date. |