Head

GCC Code Coverage Report

Directory:	./		Exec	Total	Coverage
File:	lib/libssl/ssl_stat.c	Lines:	0	223	0.0 %
Date:	2017-11-07	Branches:	0	225	0.0 %


/* $OpenBSD: ssl_stat.c,v 1.14 2017/05/07 04:22:24 beck Exp $ */
/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
 * All rights reserved.
 *
 * This package is an SSL implementation written
 * by Eric Young (eay@cryptsoft.com).
 * The implementation was written so as to conform with Netscapes SSL.
 *
 * This library is free for commercial and non-commercial use as long as
 * the following conditions are aheared to.  The following conditions
 * apply to all code found in this distribution, be it the RC4, RSA,
 * lhash, DES, etc., code; not just the SSL code.  The SSL documentation
 * included with this distribution is covered by the same copyright terms
 * except that the holder is Tim Hudson (tjh@cryptsoft.com).
 *
 * Copyright remains Eric Young's, and as such any Copyright notices in
 * the code are not to be removed.
 * If this package is used in a product, Eric Young should be given attribution
 * as the author of the parts of the library used.
 * This can be in the form of a textual message at program startup or
 * in documentation (online or textual) provided with the package.
 *
 * Redistribution and use in source and binary forms, with or without
 * modification, are permitted provided that the following conditions
 * are met:
 * 1. Redistributions of source code must retain the copyright
 *    notice, this list of conditions and the following disclaimer.
 * 2. Redistributions in binary form must reproduce the above copyright
 *    notice, this list of conditions and the following disclaimer in the
 *    documentation and/or other materials provided with the distribution.
 * 3. All advertising materials mentioning features or use of this software
 *    must display the following acknowledgement:
 *    "This product includes cryptographic software written by
 *     Eric Young (eay@cryptsoft.com)"
 *    The word 'cryptographic' can be left out if the rouines from the library
 *    being used are not cryptographic related :-).
 * 4. If you include any Windows specific code (or a derivative thereof) from
 *    the apps directory (application code) you must include an acknowledgement:
 *    "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
 *
 * THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 * ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
 * SUCH DAMAGE.
 *
 * The licence and distribution terms for any publically available version or
 * derivative of this code cannot be changed.  i.e. this code cannot simply be
 * copied and put under another distribution licence
 * [including the GNU Public Licence.]
 */
/* ====================================================================
 * Copyright 2005 Nokia. All rights reserved.
 *
 * The portions of the attached software ("Contribution") is developed by
 * Nokia Corporation and is licensed pursuant to the OpenSSL open source
 * license.
 *
 * The Contribution, originally written by Mika Kousa and Pasi Eronen of
 * Nokia Corporation, consists of the "PSK" (Pre-Shared Key) ciphersuites
 * support (see RFC 4279) to OpenSSL.
 *
 * No patent licenses or other rights except those expressly stated in
 * the OpenSSL open source license shall be deemed granted or received
 * expressly, by implication, estoppel, or otherwise.
 *
 * No assurances are provided by Nokia that the Contribution does not
 * infringe the patent or other intellectual property rights of any third
 * party or that the license provides you with all the necessary rights
 * to make use of the Contribution.
 *
 * THE SOFTWARE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. IN
 * ADDITION TO THE DISCLAIMERS INCLUDED IN THE LICENSE, NOKIA
 * SPECIFICALLY DISCLAIMS ANY LIABILITY FOR CLAIMS BROUGHT BY YOU OR ANY
 * OTHER ENTITY BASED ON INFRINGEMENT OF INTELLECTUAL PROPERTY RIGHTS OR
 * OTHERWISE.
 */

#include <stdio.h>

#include "ssl_locl.h"

const char *
SSL_state_string_long(const SSL *s)
{
	const char *str;

	switch (S3I(s)->hs.state) {
	case SSL_ST_BEFORE:
		str = "before SSL initialization";
		break;
	case SSL_ST_ACCEPT:
		str = "before accept initialization";
		break;
	case SSL_ST_CONNECT:
		str = "before connect initialization";
		break;
	case SSL_ST_OK:
		str = "SSL negotiation finished successfully";
		break;
	case SSL_ST_RENEGOTIATE:
		str = "SSL renegotiate ciphers";
		break;
	case SSL_ST_BEFORE|SSL_ST_CONNECT:
		str = "before/connect initialization";
		break;
	case SSL_ST_OK|SSL_ST_CONNECT:
		str = "ok/connect SSL initialization";
		break;
	case SSL_ST_BEFORE|SSL_ST_ACCEPT:
		str = "before/accept initialization";
		break;
	case SSL_ST_OK|SSL_ST_ACCEPT:
		str = "ok/accept SSL initialization";
		break;

	/* SSLv3 additions */
	case SSL3_ST_CW_CLNT_HELLO_A:
		str = "SSLv3 write client hello A";
		break;
	case SSL3_ST_CW_CLNT_HELLO_B:
		str = "SSLv3 write client hello B";
		break;
	case SSL3_ST_CR_SRVR_HELLO_A:
		str = "SSLv3 read server hello A";
		break;
	case SSL3_ST_CR_SRVR_HELLO_B:
		str = "SSLv3 read server hello B";
		break;
	case SSL3_ST_CR_CERT_A:
		str = "SSLv3 read server certificate A";
		break;
	case SSL3_ST_CR_CERT_B:
		str = "SSLv3 read server certificate B";
		break;
	case SSL3_ST_CR_KEY_EXCH_A:
		str = "SSLv3 read server key exchange A";
		break;
	case SSL3_ST_CR_KEY_EXCH_B:
		str = "SSLv3 read server key exchange B";
		break;
	case SSL3_ST_CR_CERT_REQ_A:
		str = "SSLv3 read server certificate request A";
		break;
	case SSL3_ST_CR_CERT_REQ_B:
		str = "SSLv3 read server certificate request B";
		break;
	case SSL3_ST_CR_SESSION_TICKET_A:
		str = "SSLv3 read server session ticket A";
		break;
	case SSL3_ST_CR_SESSION_TICKET_B:
		str = "SSLv3 read server session ticket B";
		break;
	case SSL3_ST_CR_SRVR_DONE_A:
		str = "SSLv3 read server done A";
		break;
	case SSL3_ST_CR_SRVR_DONE_B:
		str = "SSLv3 read server done B";
		break;
	case SSL3_ST_CW_CERT_A:
		str = "SSLv3 write client certificate A";
		break;
	case SSL3_ST_CW_CERT_B:
		str = "SSLv3 write client certificate B";
		break;
	case SSL3_ST_CW_CERT_C:
		str = "SSLv3 write client certificate C";
		break;
	case SSL3_ST_CW_CERT_D:
		str = "SSLv3 write client certificate D";
		break;
	case SSL3_ST_CW_KEY_EXCH_A:
		str = "SSLv3 write client key exchange A";
		break;
	case SSL3_ST_CW_KEY_EXCH_B:
		str = "SSLv3 write client key exchange B";
		break;
	case SSL3_ST_CW_CERT_VRFY_A:
		str = "SSLv3 write certificate verify A";
		break;
	case SSL3_ST_CW_CERT_VRFY_B:
		str = "SSLv3 write certificate verify B";
		break;

	case SSL3_ST_CW_CHANGE_A:
	case SSL3_ST_SW_CHANGE_A:
		str = "SSLv3 write change cipher spec A";
		break;
	case SSL3_ST_CW_CHANGE_B:
	case SSL3_ST_SW_CHANGE_B:
		str = "SSLv3 write change cipher spec B";
		break;
	case SSL3_ST_CW_FINISHED_A:
	case SSL3_ST_SW_FINISHED_A:
		str = "SSLv3 write finished A";
		break;
	case SSL3_ST_CW_FINISHED_B:
	case SSL3_ST_SW_FINISHED_B:
		str = "SSLv3 write finished B";
		break;
	case SSL3_ST_CR_CHANGE_A:
	case SSL3_ST_SR_CHANGE_A:
		str = "SSLv3 read change cipher spec A";
		break;
	case SSL3_ST_CR_CHANGE_B:
	case SSL3_ST_SR_CHANGE_B:
		str = "SSLv3 read change cipher spec B";
		break;
	case SSL3_ST_CR_FINISHED_A:
	case SSL3_ST_SR_FINISHED_A:
		str = "SSLv3 read finished A";
		break;
	case SSL3_ST_CR_FINISHED_B:
	case SSL3_ST_SR_FINISHED_B:
		str = "SSLv3 read finished B";
		break;

	case SSL3_ST_CW_FLUSH:
	case SSL3_ST_SW_FLUSH:
		str = "SSLv3 flush data";
		break;

	case SSL3_ST_SR_CLNT_HELLO_A:
		str = "SSLv3 read client hello A";
		break;
	case SSL3_ST_SR_CLNT_HELLO_B:
		str = "SSLv3 read client hello B";
		break;
	case SSL3_ST_SR_CLNT_HELLO_C:
		str = "SSLv3 read client hello C";
		break;
	case SSL3_ST_SW_HELLO_REQ_A:
		str = "SSLv3 write hello request A";
		break;
	case SSL3_ST_SW_HELLO_REQ_B:
		str = "SSLv3 write hello request B";
		break;
	case SSL3_ST_SW_HELLO_REQ_C:
		str = "SSLv3 write hello request C";
		break;
	case SSL3_ST_SW_SRVR_HELLO_A:
		str = "SSLv3 write server hello A";
		break;
	case SSL3_ST_SW_SRVR_HELLO_B:
		str = "SSLv3 write server hello B";
		break;
	case SSL3_ST_SW_CERT_A:
		str = "SSLv3 write certificate A";
		break;
	case SSL3_ST_SW_CERT_B:
		str = "SSLv3 write certificate B";
		break;
	case SSL3_ST_SW_KEY_EXCH_A:
		str = "SSLv3 write key exchange A";
		break;
	case SSL3_ST_SW_KEY_EXCH_B:
		str = "SSLv3 write key exchange B";
		break;
	case SSL3_ST_SW_CERT_REQ_A:
		str = "SSLv3 write certificate request A";
		break;
	case SSL3_ST_SW_CERT_REQ_B:
		str = "SSLv3 write certificate request B";
		break;
	case SSL3_ST_SW_SESSION_TICKET_A:
		str = "SSLv3 write session ticket A";
		break;
	case SSL3_ST_SW_SESSION_TICKET_B:
		str = "SSLv3 write session ticket B";
		break;
	case SSL3_ST_SW_SRVR_DONE_A:
		str = "SSLv3 write server done A";
		break;
	case SSL3_ST_SW_SRVR_DONE_B:
		str = "SSLv3 write server done B";
		break;
	case SSL3_ST_SR_CERT_A:
		str = "SSLv3 read client certificate A";
		break;
	case SSL3_ST_SR_CERT_B:
		str = "SSLv3 read client certificate B";
		break;
	case SSL3_ST_SR_KEY_EXCH_A:
		str = "SSLv3 read client key exchange A";
		break;
	case SSL3_ST_SR_KEY_EXCH_B:
		str = "SSLv3 read client key exchange B";
		break;
	case SSL3_ST_SR_CERT_VRFY_A:
		str = "SSLv3 read certificate verify A";
		break;
	case SSL3_ST_SR_CERT_VRFY_B:
		str = "SSLv3 read certificate verify B";
		break;

	/* DTLS */
	case DTLS1_ST_CR_HELLO_VERIFY_REQUEST_A:
		str = "DTLS1 read hello verify request A";
		break;
	case DTLS1_ST_CR_HELLO_VERIFY_REQUEST_B:
		str = "DTLS1 read hello verify request B";
		break;
	case DTLS1_ST_SW_HELLO_VERIFY_REQUEST_A:
		str = "DTLS1 write hello verify request A";
		break;
	case DTLS1_ST_SW_HELLO_VERIFY_REQUEST_B:
		str = "DTLS1 write hello verify request B";
		break;

	default:
		str = "unknown state";
		break;
	}
	return (str);
}

const char *
SSL_rstate_string_long(const SSL *s)
{
	const char *str;

	switch (s->internal->rstate) {
	case SSL_ST_READ_HEADER:
		str = "read header";
		break;
	case SSL_ST_READ_BODY:
		str = "read body";
		break;
	case SSL_ST_READ_DONE:
		str = "read done";
		break;
	default:
		str = "unknown";
		break;
	}
	return (str);
}

const char *
SSL_state_string(const SSL *s)
{
	const char *str;

	switch (S3I(s)->hs.state) {
	case SSL_ST_BEFORE:
		str = "PINIT ";
		break;
	case SSL_ST_ACCEPT:
		str = "AINIT ";
		break;
	case SSL_ST_CONNECT:
		str = "CINIT ";
		break;
	case SSL_ST_OK:
		str = "SSLOK ";
		break;

	/* SSLv3 additions */
	case SSL3_ST_SW_FLUSH:
	case SSL3_ST_CW_FLUSH:
		str = "3FLUSH";
		break;
	case SSL3_ST_CW_CLNT_HELLO_A:
		str = "3WCH_A";
		break;
	case SSL3_ST_CW_CLNT_HELLO_B:
		str = "3WCH_B";
		break;
	case SSL3_ST_CR_SRVR_HELLO_A:
		str = "3RSH_A";
		break;
	case SSL3_ST_CR_SRVR_HELLO_B:
		str = "3RSH_B";
		break;
	case SSL3_ST_CR_CERT_A:
		str = "3RSC_A";
		break;
	case SSL3_ST_CR_CERT_B:
		str = "3RSC_B";
		break;
	case SSL3_ST_CR_KEY_EXCH_A:
		str = "3RSKEA";
		break;
	case SSL3_ST_CR_KEY_EXCH_B:
		str = "3RSKEB";
		break;
	case SSL3_ST_CR_CERT_REQ_A:
		str = "3RCR_A";
		break;
	case SSL3_ST_CR_CERT_REQ_B:
		str = "3RCR_B";
		break;
	case SSL3_ST_CR_SRVR_DONE_A:
		str = "3RSD_A";
		break;
	case SSL3_ST_CR_SRVR_DONE_B:
		str = "3RSD_B";
		break;
	case SSL3_ST_CW_CERT_A:
		str = "3WCC_A";
		break;
	case SSL3_ST_CW_CERT_B:
		str = "3WCC_B";
		break;
	case SSL3_ST_CW_CERT_C:
		str = "3WCC_C";
		break;
	case SSL3_ST_CW_CERT_D:
		str = "3WCC_D";
		break;
	case SSL3_ST_CW_KEY_EXCH_A:
		str = "3WCKEA";
		break;
	case SSL3_ST_CW_KEY_EXCH_B:
		str = "3WCKEB";
		break;
	case SSL3_ST_CW_CERT_VRFY_A:
		str = "3WCV_A";
		break;
	case SSL3_ST_CW_CERT_VRFY_B:
		str = "3WCV_B";
		break;

	case SSL3_ST_SW_CHANGE_A:
	case SSL3_ST_CW_CHANGE_A:
		str = "3WCCSA";
		break;
	case SSL3_ST_SW_CHANGE_B:
	case SSL3_ST_CW_CHANGE_B:
		str = "3WCCSB";
		break;
	case SSL3_ST_SW_FINISHED_A:
	case SSL3_ST_CW_FINISHED_A:
		str = "3WFINA";
		break;
	case SSL3_ST_SW_FINISHED_B:
	case SSL3_ST_CW_FINISHED_B:
		str = "3WFINB";
		break;
	case SSL3_ST_SR_CHANGE_A:
	case SSL3_ST_CR_CHANGE_A:
		str = "3RCCSA";
		break;
	case SSL3_ST_SR_CHANGE_B:
	case SSL3_ST_CR_CHANGE_B:
		str = "3RCCSB";
		break;
	case SSL3_ST_SR_FINISHED_A:
	case SSL3_ST_CR_FINISHED_A:
		str = "3RFINA";
		break;
	case SSL3_ST_SR_FINISHED_B:
	case SSL3_ST_CR_FINISHED_B:
		str = "3RFINB";
		break;

	case SSL3_ST_SW_HELLO_REQ_A:
		str = "3WHR_A";
		break;
	case SSL3_ST_SW_HELLO_REQ_B:
		str = "3WHR_B";
		break;
	case SSL3_ST_SW_HELLO_REQ_C:
		str = "3WHR_C";
		break;
	case SSL3_ST_SR_CLNT_HELLO_A:
		str = "3RCH_A";
		break;
	case SSL3_ST_SR_CLNT_HELLO_B:
		str = "3RCH_B";
		break;
	case SSL3_ST_SR_CLNT_HELLO_C:
		str = "3RCH_C";
		break;
	case SSL3_ST_SW_SRVR_HELLO_A:
		str = "3WSH_A";
		break;
	case SSL3_ST_SW_SRVR_HELLO_B:
		str = "3WSH_B";
		break;
	case SSL3_ST_SW_CERT_A:
		str = "3WSC_A";
		break;
	case SSL3_ST_SW_CERT_B:
		str = "3WSC_B";
		break;
	case SSL3_ST_SW_KEY_EXCH_A:
		str = "3WSKEA";
		break;
	case SSL3_ST_SW_KEY_EXCH_B:
		str = "3WSKEB";
		break;
	case SSL3_ST_SW_CERT_REQ_A:
		str = "3WCR_A";
		break;
	case SSL3_ST_SW_CERT_REQ_B:
		str = "3WCR_B";
		break;
	case SSL3_ST_SW_SRVR_DONE_A:
		str = "3WSD_A";
		break;
	case SSL3_ST_SW_SRVR_DONE_B:
		str = "3WSD_B";
		break;
	case SSL3_ST_SR_CERT_A:
		str = "3RCC_A";
		break;
	case SSL3_ST_SR_CERT_B:
		str = "3RCC_B";
		break;
	case SSL3_ST_SR_KEY_EXCH_A:
		str = "3RCKEA";
		break;
	case SSL3_ST_SR_KEY_EXCH_B:
		str = "3RCKEB";
		break;
	case SSL3_ST_SR_CERT_VRFY_A:
		str = "3RCV_A";
		break;
	case SSL3_ST_SR_CERT_VRFY_B:
		str = "3RCV_B";
		break;

	/* DTLS */
	case DTLS1_ST_CR_HELLO_VERIFY_REQUEST_A:
		str = "DRCHVA";
		break;
	case DTLS1_ST_CR_HELLO_VERIFY_REQUEST_B:
		str = "DRCHVB";
		break;
	case DTLS1_ST_SW_HELLO_VERIFY_REQUEST_A:
		str = "DWCHVA";
		break;
	case DTLS1_ST_SW_HELLO_VERIFY_REQUEST_B:
		str = "DWCHVB";
		break;

	default:
		str = "UNKWN ";
		break;
	}
	return (str);
}

const char *
SSL_alert_type_string_long(int value)
{
	value >>= 8;
	if (value == SSL3_AL_WARNING)
		return ("warning");
	else if (value == SSL3_AL_FATAL)
		return ("fatal");
	else
		return ("unknown");
}

const char *
SSL_alert_type_string(int value)
{
	value >>= 8;
	if (value == SSL3_AL_WARNING)
		return ("W");
	else if (value == SSL3_AL_FATAL)
		return ("F");
	else
		return ("U");
}

const char *
SSL_alert_desc_string(int value)
{
	const char *str;

	switch (value & 0xff) {
	case SSL3_AD_CLOSE_NOTIFY:
		str = "CN";
		break;
	case SSL3_AD_UNEXPECTED_MESSAGE:
		str = "UM";
		break;
	case SSL3_AD_BAD_RECORD_MAC:
		str = "BM";
		break;
	case SSL3_AD_DECOMPRESSION_FAILURE:
		str = "DF";
		break;
	case SSL3_AD_HANDSHAKE_FAILURE:
		str = "HF";
		break;
	case SSL3_AD_NO_CERTIFICATE:
		str = "NC";
		break;
	case SSL3_AD_BAD_CERTIFICATE:
		str = "BC";
		break;
	case SSL3_AD_UNSUPPORTED_CERTIFICATE:
		str = "UC";
		break;
	case SSL3_AD_CERTIFICATE_REVOKED:
		str = "CR";
		break;
	case SSL3_AD_CERTIFICATE_EXPIRED:
		str = "CE";
		break;
	case SSL3_AD_CERTIFICATE_UNKNOWN:
		str = "CU";
		break;
	case SSL3_AD_ILLEGAL_PARAMETER:
		str = "IP";
		break;
	case TLS1_AD_DECRYPTION_FAILED:
		str = "DC";
		break;
	case TLS1_AD_RECORD_OVERFLOW:
		str = "RO";
		break;
	case TLS1_AD_UNKNOWN_CA:
		str = "CA";
		break;
	case TLS1_AD_ACCESS_DENIED:
		str = "AD";
		break;
	case TLS1_AD_DECODE_ERROR:
		str = "DE";
		break;
	case TLS1_AD_DECRYPT_ERROR:
		str = "CY";
		break;
	case TLS1_AD_EXPORT_RESTRICTION:
		str = "ER";
		break;
	case TLS1_AD_PROTOCOL_VERSION:
		str = "PV";
		break;
	case TLS1_AD_INSUFFICIENT_SECURITY:
		str = "IS";
		break;
	case TLS1_AD_INTERNAL_ERROR:
		str = "IE";
		break;
	case TLS1_AD_USER_CANCELLED:
		str = "US";
		break;
	case TLS1_AD_NO_RENEGOTIATION:
		str = "NR";
		break;
	case TLS1_AD_UNSUPPORTED_EXTENSION:
		str = "UE";
		break;
	case TLS1_AD_CERTIFICATE_UNOBTAINABLE:
		str = "CO";
		break;
	case TLS1_AD_UNRECOGNIZED_NAME:
		str = "UN";
		break;
	case TLS1_AD_BAD_CERTIFICATE_STATUS_RESPONSE:
		str = "BR";
		break;
	case TLS1_AD_BAD_CERTIFICATE_HASH_VALUE:
		str = "BH";
		break;
	case TLS1_AD_UNKNOWN_PSK_IDENTITY:
		str = "UP";
		break;
	default:
		str = "UK";
		break;
	}
	return (str);
}

const char *
SSL_alert_desc_string_long(int value)
{
	const char *str;

	switch (value & 0xff) {
	case SSL3_AD_CLOSE_NOTIFY:
		str = "close notify";
		break;
	case SSL3_AD_UNEXPECTED_MESSAGE:
		str = "unexpected_message";
		break;
	case SSL3_AD_BAD_RECORD_MAC:
		str = "bad record mac";
		break;
	case SSL3_AD_DECOMPRESSION_FAILURE:
		str = "decompression failure";
		break;
	case SSL3_AD_HANDSHAKE_FAILURE:
		str = "handshake failure";
		break;
	case SSL3_AD_NO_CERTIFICATE:
		str = "no certificate";
		break;
	case SSL3_AD_BAD_CERTIFICATE:
		str = "bad certificate";
		break;
	case SSL3_AD_UNSUPPORTED_CERTIFICATE:
		str = "unsupported certificate";
		break;
	case SSL3_AD_CERTIFICATE_REVOKED:
		str = "certificate revoked";
		break;
	case SSL3_AD_CERTIFICATE_EXPIRED:
		str = "certificate expired";
		break;
	case SSL3_AD_CERTIFICATE_UNKNOWN:
		str = "certificate unknown";
		break;
	case SSL3_AD_ILLEGAL_PARAMETER:
		str = "illegal parameter";
		break;
	case TLS1_AD_DECRYPTION_FAILED:
		str = "decryption failed";
		break;
	case TLS1_AD_RECORD_OVERFLOW:
		str = "record overflow";
		break;
	case TLS1_AD_UNKNOWN_CA:
		str = "unknown CA";
		break;
	case TLS1_AD_ACCESS_DENIED:
		str = "access denied";
		break;
	case TLS1_AD_DECODE_ERROR:
		str = "decode error";
		break;
	case TLS1_AD_DECRYPT_ERROR:
		str = "decrypt error";
		break;
	case TLS1_AD_EXPORT_RESTRICTION:
		str = "export restriction";
		break;
	case TLS1_AD_PROTOCOL_VERSION:
		str = "protocol version";
		break;
	case TLS1_AD_INSUFFICIENT_SECURITY:
		str = "insufficient security";
		break;
	case TLS1_AD_INTERNAL_ERROR:
		str = "internal error";
		break;
	case TLS1_AD_USER_CANCELLED:
		str = "user canceled";
		break;
	case TLS1_AD_NO_RENEGOTIATION:
		str = "no renegotiation";
		break;
	case TLS1_AD_UNSUPPORTED_EXTENSION:
		str = "unsupported extension";
		break;
	case TLS1_AD_CERTIFICATE_UNOBTAINABLE:
		str = "certificate unobtainable";
		break;
	case TLS1_AD_UNRECOGNIZED_NAME:
		str = "unrecognized name";
		break;
	case TLS1_AD_BAD_CERTIFICATE_STATUS_RESPONSE:
		str = "bad certificate status response";
		break;
	case TLS1_AD_BAD_CERTIFICATE_HASH_VALUE:
		str = "bad certificate hash value";
		break;
	case TLS1_AD_UNKNOWN_PSK_IDENTITY:
		str = "unknown PSK identity";
		break;
	default:
		str = "unknown";
		break;
	}
	return (str);
}

const char *
SSL_rstate_string(const SSL *s)
{
	const char *str;

	switch (s->internal->rstate) {
	case SSL_ST_READ_HEADER:
		str = "RH";
		break;
	case SSL_ST_READ_BODY:
		str = "RB";
		break;
	case SSL_ST_READ_DONE:
		str = "RD";
		break;
	default:
		str = "unknown";
		break;
	}
	return (str);
}


Generated by: GCOVR (Version 3.3)

Line	Branch	Exec	Source
1			/* $OpenBSD: ssl_stat.c,v 1.14 2017/05/07 04:22:24 beck Exp $ */
2			/* Copyright (C) 1995-1998 Eric Young (eay@cryptsoft.com)
3			* All rights reserved.
4			*
5			* This package is an SSL implementation written
6			* by Eric Young (eay@cryptsoft.com).
7			* The implementation was written so as to conform with Netscapes SSL.
8			*
9			* This library is free for commercial and non-commercial use as long as
10			* the following conditions are aheared to. The following conditions
11			* apply to all code found in this distribution, be it the RC4, RSA,
12			* lhash, DES, etc., code; not just the SSL code. The SSL documentation
13			* included with this distribution is covered by the same copyright terms
14			* except that the holder is Tim Hudson (tjh@cryptsoft.com).
15			*
16			* Copyright remains Eric Young's, and as such any Copyright notices in
17			* the code are not to be removed.
18			* If this package is used in a product, Eric Young should be given attribution
19			* as the author of the parts of the library used.
20			* This can be in the form of a textual message at program startup or
21			* in documentation (online or textual) provided with the package.
22			*
23			* Redistribution and use in source and binary forms, with or without
24			* modification, are permitted provided that the following conditions
25			* are met:
26			* 1. Redistributions of source code must retain the copyright
27			* notice, this list of conditions and the following disclaimer.
28			* 2. Redistributions in binary form must reproduce the above copyright
29			* notice, this list of conditions and the following disclaimer in the
30			* documentation and/or other materials provided with the distribution.
31			* 3. All advertising materials mentioning features or use of this software
32			* must display the following acknowledgement:
33			* "This product includes cryptographic software written by
34			* Eric Young (eay@cryptsoft.com)"
35			* The word 'cryptographic' can be left out if the rouines from the library
36			* being used are not cryptographic related :-).
37			* 4. If you include any Windows specific code (or a derivative thereof) from
38			* the apps directory (application code) you must include an acknowledgement:
39			* "This product includes software written by Tim Hudson (tjh@cryptsoft.com)"
40			*
41			* THIS SOFTWARE IS PROVIDED BY ERIC YOUNG ``AS IS'' AND
42			* ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
43			* IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
44			* ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
45			* FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
46			* DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
47			* OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
48			* HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
49			* LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
50			* OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
51			* SUCH DAMAGE.
52			*
53			* The licence and distribution terms for any publically available version or
54			* derivative of this code cannot be changed. i.e. this code cannot simply be
55			* copied and put under another distribution licence
56			* [including the GNU Public Licence.]
57			*/
58			/* ====================================================================
59			* Copyright 2005 Nokia. All rights reserved.
60			*
61			* The portions of the attached software ("Contribution") is developed by
62			* Nokia Corporation and is licensed pursuant to the OpenSSL open source
63			* license.
64			*
65			* The Contribution, originally written by Mika Kousa and Pasi Eronen of
66			* Nokia Corporation, consists of the "PSK" (Pre-Shared Key) ciphersuites
67			* support (see RFC 4279) to OpenSSL.
68			*
69			* No patent licenses or other rights except those expressly stated in
70			* the OpenSSL open source license shall be deemed granted or received
71			* expressly, by implication, estoppel, or otherwise.
72			*
73			* No assurances are provided by Nokia that the Contribution does not
74			* infringe the patent or other intellectual property rights of any third
75			* party or that the license provides you with all the necessary rights
76			* to make use of the Contribution.
77			*
78			* THE SOFTWARE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. IN
79			* ADDITION TO THE DISCLAIMERS INCLUDED IN THE LICENSE, NOKIA
80			* SPECIFICALLY DISCLAIMS ANY LIABILITY FOR CLAIMS BROUGHT BY YOU OR ANY
81			* OTHER ENTITY BASED ON INFRINGEMENT OF INTELLECTUAL PROPERTY RIGHTS OR
82			* OTHERWISE.
83			*/
84
85			#include <stdio.h>
86
87			#include "ssl_locl.h"
88
89			const char *
90			SSL_state_string_long(const SSL *s)
91			{
92			const char *str;
93
94			switch (S3I(s)->hs.state) {
95			case SSL_ST_BEFORE:
96			str = "before SSL initialization";
97			break;
98			case SSL_ST_ACCEPT:
99			str = "before accept initialization";
100			break;
101			case SSL_ST_CONNECT:
102			str = "before connect initialization";
103			break;
104			case SSL_ST_OK:
105			str = "SSL negotiation finished successfully";
106			break;
107			case SSL_ST_RENEGOTIATE:
108			str = "SSL renegotiate ciphers";
109			break;
110			case SSL_ST_BEFORE\|SSL_ST_CONNECT:
111			str = "before/connect initialization";
112			break;
113			case SSL_ST_OK\|SSL_ST_CONNECT:
114			str = "ok/connect SSL initialization";
115			break;
116			case SSL_ST_BEFORE\|SSL_ST_ACCEPT:
117			str = "before/accept initialization";
118			break;
119			case SSL_ST_OK\|SSL_ST_ACCEPT:
120			str = "ok/accept SSL initialization";
121			break;
122
123			/* SSLv3 additions */
124			case SSL3_ST_CW_CLNT_HELLO_A:
125			str = "SSLv3 write client hello A";
126			break;
127			case SSL3_ST_CW_CLNT_HELLO_B:
128			str = "SSLv3 write client hello B";
129			break;
130			case SSL3_ST_CR_SRVR_HELLO_A:
131			str = "SSLv3 read server hello A";
132			break;
133			case SSL3_ST_CR_SRVR_HELLO_B:
134			str = "SSLv3 read server hello B";
135			break;
136			case SSL3_ST_CR_CERT_A:
137			str = "SSLv3 read server certificate A";
138			break;
139			case SSL3_ST_CR_CERT_B:
140			str = "SSLv3 read server certificate B";
141			break;
142			case SSL3_ST_CR_KEY_EXCH_A:
143			str = "SSLv3 read server key exchange A";
144			break;
145			case SSL3_ST_CR_KEY_EXCH_B:
146			str = "SSLv3 read server key exchange B";
147			break;
148			case SSL3_ST_CR_CERT_REQ_A:
149			str = "SSLv3 read server certificate request A";
150			break;
151			case SSL3_ST_CR_CERT_REQ_B:
152			str = "SSLv3 read server certificate request B";
153			break;
154			case SSL3_ST_CR_SESSION_TICKET_A:
155			str = "SSLv3 read server session ticket A";
156			break;
157			case SSL3_ST_CR_SESSION_TICKET_B:
158			str = "SSLv3 read server session ticket B";
159			break;
160			case SSL3_ST_CR_SRVR_DONE_A:
161			str = "SSLv3 read server done A";
162			break;
163			case SSL3_ST_CR_SRVR_DONE_B:
164			str = "SSLv3 read server done B";
165			break;
166			case SSL3_ST_CW_CERT_A:
167			str = "SSLv3 write client certificate A";
168			break;
169			case SSL3_ST_CW_CERT_B:
170			str = "SSLv3 write client certificate B";
171			break;
172			case SSL3_ST_CW_CERT_C:
173			str = "SSLv3 write client certificate C";
174			break;
175			case SSL3_ST_CW_CERT_D:
176			str = "SSLv3 write client certificate D";
177			break;
178			case SSL3_ST_CW_KEY_EXCH_A:
179			str = "SSLv3 write client key exchange A";
180			break;
181			case SSL3_ST_CW_KEY_EXCH_B:
182			str = "SSLv3 write client key exchange B";
183			break;
184			case SSL3_ST_CW_CERT_VRFY_A:
185			str = "SSLv3 write certificate verify A";
186			break;
187			case SSL3_ST_CW_CERT_VRFY_B:
188			str = "SSLv3 write certificate verify B";
189			break;
190
191			case SSL3_ST_CW_CHANGE_A:
192			case SSL3_ST_SW_CHANGE_A:
193			str = "SSLv3 write change cipher spec A";
194			break;
195			case SSL3_ST_CW_CHANGE_B:
196			case SSL3_ST_SW_CHANGE_B:
197			str = "SSLv3 write change cipher spec B";
198			break;
199			case SSL3_ST_CW_FINISHED_A:
200			case SSL3_ST_SW_FINISHED_A:
201			str = "SSLv3 write finished A";
202			break;
203			case SSL3_ST_CW_FINISHED_B:
204			case SSL3_ST_SW_FINISHED_B:
205			str = "SSLv3 write finished B";
206			break;
207			case SSL3_ST_CR_CHANGE_A:
208			case SSL3_ST_SR_CHANGE_A:
209			str = "SSLv3 read change cipher spec A";
210			break;
211			case SSL3_ST_CR_CHANGE_B:
212			case SSL3_ST_SR_CHANGE_B:
213			str = "SSLv3 read change cipher spec B";
214			break;
215			case SSL3_ST_CR_FINISHED_A:
216			case SSL3_ST_SR_FINISHED_A:
217			str = "SSLv3 read finished A";
218			break;
219			case SSL3_ST_CR_FINISHED_B:
220			case SSL3_ST_SR_FINISHED_B:
221			str = "SSLv3 read finished B";
222			break;
223
224			case SSL3_ST_CW_FLUSH:
225			case SSL3_ST_SW_FLUSH:
226			str = "SSLv3 flush data";
227			break;
228
229			case SSL3_ST_SR_CLNT_HELLO_A:
230			str = "SSLv3 read client hello A";
231			break;
232			case SSL3_ST_SR_CLNT_HELLO_B:
233			str = "SSLv3 read client hello B";
234			break;
235			case SSL3_ST_SR_CLNT_HELLO_C:
236			str = "SSLv3 read client hello C";
237			break;
238			case SSL3_ST_SW_HELLO_REQ_A:
239			str = "SSLv3 write hello request A";
240			break;
241			case SSL3_ST_SW_HELLO_REQ_B:
242			str = "SSLv3 write hello request B";
243			break;
244			case SSL3_ST_SW_HELLO_REQ_C:
245			str = "SSLv3 write hello request C";
246			break;
247			case SSL3_ST_SW_SRVR_HELLO_A:
248			str = "SSLv3 write server hello A";
249			break;
250			case SSL3_ST_SW_SRVR_HELLO_B:
251			str = "SSLv3 write server hello B";
252			break;
253			case SSL3_ST_SW_CERT_A:
254			str = "SSLv3 write certificate A";
255			break;
256			case SSL3_ST_SW_CERT_B:
257			str = "SSLv3 write certificate B";
258			break;
259			case SSL3_ST_SW_KEY_EXCH_A:
260			str = "SSLv3 write key exchange A";
261			break;
262			case SSL3_ST_SW_KEY_EXCH_B:
263			str = "SSLv3 write key exchange B";
264			break;
265			case SSL3_ST_SW_CERT_REQ_A:
266			str = "SSLv3 write certificate request A";
267			break;
268			case SSL3_ST_SW_CERT_REQ_B:
269			str = "SSLv3 write certificate request B";
270			break;
271			case SSL3_ST_SW_SESSION_TICKET_A:
272			str = "SSLv3 write session ticket A";
273			break;
274			case SSL3_ST_SW_SESSION_TICKET_B:
275			str = "SSLv3 write session ticket B";
276			break;
277			case SSL3_ST_SW_SRVR_DONE_A:
278			str = "SSLv3 write server done A";
279			break;
280			case SSL3_ST_SW_SRVR_DONE_B:
281			str = "SSLv3 write server done B";
282			break;
283			case SSL3_ST_SR_CERT_A:
284			str = "SSLv3 read client certificate A";
285			break;
286			case SSL3_ST_SR_CERT_B:
287			str = "SSLv3 read client certificate B";
288			break;
289			case SSL3_ST_SR_KEY_EXCH_A:
290			str = "SSLv3 read client key exchange A";
291			break;
292			case SSL3_ST_SR_KEY_EXCH_B:
293			str = "SSLv3 read client key exchange B";
294			break;
295			case SSL3_ST_SR_CERT_VRFY_A:
296			str = "SSLv3 read certificate verify A";
297			break;
298			case SSL3_ST_SR_CERT_VRFY_B:
299			str = "SSLv3 read certificate verify B";
300			break;
301
302			/* DTLS */
303			case DTLS1_ST_CR_HELLO_VERIFY_REQUEST_A:
304			str = "DTLS1 read hello verify request A";
305			break;
306			case DTLS1_ST_CR_HELLO_VERIFY_REQUEST_B:
307			str = "DTLS1 read hello verify request B";
308			break;
309			case DTLS1_ST_SW_HELLO_VERIFY_REQUEST_A:
310			str = "DTLS1 write hello verify request A";
311			break;
312			case DTLS1_ST_SW_HELLO_VERIFY_REQUEST_B:
313			str = "DTLS1 write hello verify request B";
314			break;
315
316			default:
317			str = "unknown state";
318			break;
319			}
320			return (str);
321			}
322
323			const char *
324			SSL_rstate_string_long(const SSL *s)
325			{
326			const char *str;
327
328			switch (s->internal->rstate) {
329			case SSL_ST_READ_HEADER:
330			str = "read header";
331			break;
332			case SSL_ST_READ_BODY:
333			str = "read body";
334			break;
335			case SSL_ST_READ_DONE:
336			str = "read done";
337			break;
338			default:
339			str = "unknown";
340			break;
341			}
342			return (str);
343			}
344
345			const char *
346			SSL_state_string(const SSL *s)
347			{
348			const char *str;
349
350			switch (S3I(s)->hs.state) {
351			case SSL_ST_BEFORE:
352			str = "PINIT ";
353			break;
354			case SSL_ST_ACCEPT:
355			str = "AINIT ";
356			break;
357			case SSL_ST_CONNECT:
358			str = "CINIT ";
359			break;
360			case SSL_ST_OK:
361			str = "SSLOK ";
362			break;
363
364			/* SSLv3 additions */
365			case SSL3_ST_SW_FLUSH:
366			case SSL3_ST_CW_FLUSH:
367			str = "3FLUSH";
368			break;
369			case SSL3_ST_CW_CLNT_HELLO_A:
370			str = "3WCH_A";
371			break;
372			case SSL3_ST_CW_CLNT_HELLO_B:
373			str = "3WCH_B";
374			break;
375			case SSL3_ST_CR_SRVR_HELLO_A:
376			str = "3RSH_A";
377			break;
378			case SSL3_ST_CR_SRVR_HELLO_B:
379			str = "3RSH_B";
380			break;
381			case SSL3_ST_CR_CERT_A:
382			str = "3RSC_A";
383			break;
384			case SSL3_ST_CR_CERT_B:
385			str = "3RSC_B";
386			break;
387			case SSL3_ST_CR_KEY_EXCH_A:
388			str = "3RSKEA";
389			break;
390			case SSL3_ST_CR_KEY_EXCH_B:
391			str = "3RSKEB";
392			break;
393			case SSL3_ST_CR_CERT_REQ_A:
394			str = "3RCR_A";
395			break;
396			case SSL3_ST_CR_CERT_REQ_B:
397			str = "3RCR_B";
398			break;
399			case SSL3_ST_CR_SRVR_DONE_A:
400			str = "3RSD_A";
401			break;
402			case SSL3_ST_CR_SRVR_DONE_B:
403			str = "3RSD_B";
404			break;
405			case SSL3_ST_CW_CERT_A:
406			str = "3WCC_A";
407			break;
408			case SSL3_ST_CW_CERT_B:
409			str = "3WCC_B";
410			break;
411			case SSL3_ST_CW_CERT_C:
412			str = "3WCC_C";
413			break;
414			case SSL3_ST_CW_CERT_D:
415			str = "3WCC_D";
416			break;
417			case SSL3_ST_CW_KEY_EXCH_A:
418			str = "3WCKEA";
419			break;
420			case SSL3_ST_CW_KEY_EXCH_B:
421			str = "3WCKEB";
422			break;
423			case SSL3_ST_CW_CERT_VRFY_A:
424			str = "3WCV_A";
425			break;
426			case SSL3_ST_CW_CERT_VRFY_B:
427			str = "3WCV_B";
428			break;
429
430			case SSL3_ST_SW_CHANGE_A:
431			case SSL3_ST_CW_CHANGE_A:
432			str = "3WCCSA";
433			break;
434			case SSL3_ST_SW_CHANGE_B:
435			case SSL3_ST_CW_CHANGE_B:
436			str = "3WCCSB";
437			break;
438			case SSL3_ST_SW_FINISHED_A:
439			case SSL3_ST_CW_FINISHED_A:
440			str = "3WFINA";
441			break;
442			case SSL3_ST_SW_FINISHED_B:
443			case SSL3_ST_CW_FINISHED_B:
444			str = "3WFINB";
445			break;
446			case SSL3_ST_SR_CHANGE_A:
447			case SSL3_ST_CR_CHANGE_A:
448			str = "3RCCSA";
449			break;
450			case SSL3_ST_SR_CHANGE_B:
451			case SSL3_ST_CR_CHANGE_B:
452			str = "3RCCSB";
453			break;
454			case SSL3_ST_SR_FINISHED_A:
455			case SSL3_ST_CR_FINISHED_A:
456			str = "3RFINA";
457			break;
458			case SSL3_ST_SR_FINISHED_B:
459			case SSL3_ST_CR_FINISHED_B:
460			str = "3RFINB";
461			break;
462
463			case SSL3_ST_SW_HELLO_REQ_A:
464			str = "3WHR_A";
465			break;
466			case SSL3_ST_SW_HELLO_REQ_B:
467			str = "3WHR_B";
468			break;
469			case SSL3_ST_SW_HELLO_REQ_C:
470			str = "3WHR_C";
471			break;
472			case SSL3_ST_SR_CLNT_HELLO_A:
473			str = "3RCH_A";
474			break;
475			case SSL3_ST_SR_CLNT_HELLO_B:
476			str = "3RCH_B";
477			break;
478			case SSL3_ST_SR_CLNT_HELLO_C:
479			str = "3RCH_C";
480			break;
481			case SSL3_ST_SW_SRVR_HELLO_A:
482			str = "3WSH_A";
483			break;
484			case SSL3_ST_SW_SRVR_HELLO_B:
485			str = "3WSH_B";
486			break;
487			case SSL3_ST_SW_CERT_A:
488			str = "3WSC_A";
489			break;
490			case SSL3_ST_SW_CERT_B:
491			str = "3WSC_B";
492			break;
493			case SSL3_ST_SW_KEY_EXCH_A:
494			str = "3WSKEA";
495			break;
496			case SSL3_ST_SW_KEY_EXCH_B:
497			str = "3WSKEB";
498			break;
499			case SSL3_ST_SW_CERT_REQ_A:
500			str = "3WCR_A";
501			break;
502			case SSL3_ST_SW_CERT_REQ_B:
503			str = "3WCR_B";
504			break;
505			case SSL3_ST_SW_SRVR_DONE_A:
506			str = "3WSD_A";
507			break;
508			case SSL3_ST_SW_SRVR_DONE_B:
509			str = "3WSD_B";
510			break;
511			case SSL3_ST_SR_CERT_A:
512			str = "3RCC_A";
513			break;
514			case SSL3_ST_SR_CERT_B:
515			str = "3RCC_B";
516			break;
517			case SSL3_ST_SR_KEY_EXCH_A:
518			str = "3RCKEA";
519			break;
520			case SSL3_ST_SR_KEY_EXCH_B:
521			str = "3RCKEB";
522			break;
523			case SSL3_ST_SR_CERT_VRFY_A:
524			str = "3RCV_A";
525			break;
526			case SSL3_ST_SR_CERT_VRFY_B:
527			str = "3RCV_B";
528			break;
529
530			/* DTLS */
531			case DTLS1_ST_CR_HELLO_VERIFY_REQUEST_A:
532			str = "DRCHVA";
533			break;
534			case DTLS1_ST_CR_HELLO_VERIFY_REQUEST_B:
535			str = "DRCHVB";
536			break;
537			case DTLS1_ST_SW_HELLO_VERIFY_REQUEST_A:
538			str = "DWCHVA";
539			break;
540			case DTLS1_ST_SW_HELLO_VERIFY_REQUEST_B:
541			str = "DWCHVB";
542			break;
543
544			default:
545			str = "UNKWN ";
546			break;
547			}
548			return (str);
549			}
550
551			const char *
552			SSL_alert_type_string_long(int value)
553			{
554			value >>= 8;
555			if (value == SSL3_AL_WARNING)
556			return ("warning");
557			else if (value == SSL3_AL_FATAL)
558			return ("fatal");
559			else
560			return ("unknown");
561			}
562
563			const char *
564			SSL_alert_type_string(int value)
565			{
566			value >>= 8;
567			if (value == SSL3_AL_WARNING)
568			return ("W");
569			else if (value == SSL3_AL_FATAL)
570			return ("F");
571			else
572			return ("U");
573			}
574
575			const char *
576			SSL_alert_desc_string(int value)
577			{
578			const char *str;
579
580			switch (value & 0xff) {
581			case SSL3_AD_CLOSE_NOTIFY:
582			str = "CN";
583			break;
584			case SSL3_AD_UNEXPECTED_MESSAGE:
585			str = "UM";
586			break;
587			case SSL3_AD_BAD_RECORD_MAC:
588			str = "BM";
589			break;
590			case SSL3_AD_DECOMPRESSION_FAILURE:
591			str = "DF";
592			break;
593			case SSL3_AD_HANDSHAKE_FAILURE:
594			str = "HF";
595			break;
596			case SSL3_AD_NO_CERTIFICATE:
597			str = "NC";
598			break;
599			case SSL3_AD_BAD_CERTIFICATE:
600			str = "BC";
601			break;
602			case SSL3_AD_UNSUPPORTED_CERTIFICATE:
603			str = "UC";
604			break;
605			case SSL3_AD_CERTIFICATE_REVOKED:
606			str = "CR";
607			break;
608			case SSL3_AD_CERTIFICATE_EXPIRED:
609			str = "CE";
610			break;
611			case SSL3_AD_CERTIFICATE_UNKNOWN:
612			str = "CU";
613			break;
614			case SSL3_AD_ILLEGAL_PARAMETER:
615			str = "IP";
616			break;
617			case TLS1_AD_DECRYPTION_FAILED:
618			str = "DC";
619			break;
620			case TLS1_AD_RECORD_OVERFLOW:
621			str = "RO";
622			break;
623			case TLS1_AD_UNKNOWN_CA:
624			str = "CA";
625			break;
626			case TLS1_AD_ACCESS_DENIED:
627			str = "AD";
628			break;
629			case TLS1_AD_DECODE_ERROR:
630			str = "DE";
631			break;
632			case TLS1_AD_DECRYPT_ERROR:
633			str = "CY";
634			break;
635			case TLS1_AD_EXPORT_RESTRICTION:
636			str = "ER";
637			break;
638			case TLS1_AD_PROTOCOL_VERSION:
639			str = "PV";
640			break;
641			case TLS1_AD_INSUFFICIENT_SECURITY:
642			str = "IS";
643			break;
644			case TLS1_AD_INTERNAL_ERROR:
645			str = "IE";
646			break;
647			case TLS1_AD_USER_CANCELLED:
648			str = "US";
649			break;
650			case TLS1_AD_NO_RENEGOTIATION:
651			str = "NR";
652			break;
653			case TLS1_AD_UNSUPPORTED_EXTENSION:
654			str = "UE";
655			break;
656			case TLS1_AD_CERTIFICATE_UNOBTAINABLE:
657			str = "CO";
658			break;
659			case TLS1_AD_UNRECOGNIZED_NAME:
660			str = "UN";
661			break;
662			case TLS1_AD_BAD_CERTIFICATE_STATUS_RESPONSE:
663			str = "BR";
664			break;
665			case TLS1_AD_BAD_CERTIFICATE_HASH_VALUE:
666			str = "BH";
667			break;
668			case TLS1_AD_UNKNOWN_PSK_IDENTITY:
669			str = "UP";
670			break;
671			default:
672			str = "UK";
673			break;
674			}
675			return (str);
676			}
677
678			const char *
679			SSL_alert_desc_string_long(int value)
680			{
681			const char *str;
682
683			switch (value & 0xff) {
684			case SSL3_AD_CLOSE_NOTIFY:
685			str = "close notify";
686			break;
687			case SSL3_AD_UNEXPECTED_MESSAGE:
688			str = "unexpected_message";
689			break;
690			case SSL3_AD_BAD_RECORD_MAC:
691			str = "bad record mac";
692			break;
693			case SSL3_AD_DECOMPRESSION_FAILURE:
694			str = "decompression failure";
695			break;
696			case SSL3_AD_HANDSHAKE_FAILURE:
697			str = "handshake failure";
698			break;
699			case SSL3_AD_NO_CERTIFICATE:
700			str = "no certificate";
701			break;
702			case SSL3_AD_BAD_CERTIFICATE:
703			str = "bad certificate";
704			break;
705			case SSL3_AD_UNSUPPORTED_CERTIFICATE:
706			str = "unsupported certificate";
707			break;
708			case SSL3_AD_CERTIFICATE_REVOKED:
709			str = "certificate revoked";
710			break;
711			case SSL3_AD_CERTIFICATE_EXPIRED:
712			str = "certificate expired";
713			break;
714			case SSL3_AD_CERTIFICATE_UNKNOWN:
715			str = "certificate unknown";
716			break;
717			case SSL3_AD_ILLEGAL_PARAMETER:
718			str = "illegal parameter";
719			break;
720			case TLS1_AD_DECRYPTION_FAILED:
721			str = "decryption failed";
722			break;
723			case TLS1_AD_RECORD_OVERFLOW:
724			str = "record overflow";
725			break;
726			case TLS1_AD_UNKNOWN_CA:
727			str = "unknown CA";
728			break;
729			case TLS1_AD_ACCESS_DENIED:
730			str = "access denied";
731			break;
732			case TLS1_AD_DECODE_ERROR:
733			str = "decode error";
734			break;
735			case TLS1_AD_DECRYPT_ERROR:
736			str = "decrypt error";
737			break;
738			case TLS1_AD_EXPORT_RESTRICTION:
739			str = "export restriction";
740			break;
741			case TLS1_AD_PROTOCOL_VERSION:
742			str = "protocol version";
743			break;
744			case TLS1_AD_INSUFFICIENT_SECURITY:
745			str = "insufficient security";
746			break;
747			case TLS1_AD_INTERNAL_ERROR:
748			str = "internal error";
749			break;
750			case TLS1_AD_USER_CANCELLED:
751			str = "user canceled";
752			break;
753			case TLS1_AD_NO_RENEGOTIATION:
754			str = "no renegotiation";
755			break;
756			case TLS1_AD_UNSUPPORTED_EXTENSION:
757			str = "unsupported extension";
758			break;
759			case TLS1_AD_CERTIFICATE_UNOBTAINABLE:
760			str = "certificate unobtainable";
761			break;
762			case TLS1_AD_UNRECOGNIZED_NAME:
763			str = "unrecognized name";
764			break;
765			case TLS1_AD_BAD_CERTIFICATE_STATUS_RESPONSE:
766			str = "bad certificate status response";
767			break;
768			case TLS1_AD_BAD_CERTIFICATE_HASH_VALUE:
769			str = "bad certificate hash value";
770			break;
771			case TLS1_AD_UNKNOWN_PSK_IDENTITY:
772			str = "unknown PSK identity";
773			break;
774			default:
775			str = "unknown";
776			break;
777			}
778			return (str);
779			}
780
781			const char *
782			SSL_rstate_string(const SSL *s)
783			{
784			const char *str;
785
786			switch (s->internal->rstate) {
787			case SSL_ST_READ_HEADER:
788			str = "RH";
789			break;
790			case SSL_ST_READ_BODY:
791			str = "RB";
792			break;
793			case SSL_ST_READ_DONE:
794			str = "RD";
795			break;
796			default:
797			str = "unknown";
798			break;
799			}
800			return (str);
801			}