-{SSL_R_KRB5_C_CC_PRINC ,"krb5 c cc princ"},
-{SSL_R_KRB5_C_GET_CRED ,"krb5 c get cred"},
-{SSL_R_KRB5_C_INIT ,"krb5 c init"},
-{SSL_R_KRB5_C_MK_REQ ,"krb5 c mk req"},
-{SSL_R_KRB5_S_BAD_TICKET ,"krb5 s bad ticket"},
-{SSL_R_KRB5_S_INIT ,"krb5 s init"},
-{SSL_R_KRB5_S_RD_REQ ,"krb5 s rd req"},
+{SSL_R_KEY_ARG_TOO_LONG ,"key arg too long"},
+{SSL_R_KRB5 ,"krb5"},
+{SSL_R_KRB5_C_CC_PRINC ,"krb5 client cc principal (no tkt?)"},
+{SSL_R_KRB5_C_GET_CRED ,"krb5 client get cred"},
+{SSL_R_KRB5_C_INIT ,"krb5 client init"},
+{SSL_R_KRB5_C_MK_REQ ,"krb5 client mk_req (expired tkt?)"},
+{SSL_R_KRB5_S_BAD_TICKET ,"krb5 server bad ticket"},
+{SSL_R_KRB5_S_INIT ,"krb5 server init"},
+{SSL_R_KRB5_S_RD_REQ ,"krb5 server rd_req (keytab perms?)"},
+{SSL_R_KRB5_S_TKT_EXPIRED ,"krb5 server tkt expired"},
+{SSL_R_KRB5_S_TKT_NYV ,"krb5 server tkt not yet valid"},
+{SSL_R_KRB5_S_TKT_SKEW ,"krb5 server tkt skew"},