Expand description
X.509 chain-level negative-fixture policy helpers.
Defines ChainNegative variants (hostname mismatch, unknown CA,
expired leaf/intermediate, revoked leaf) and provides
ChainNegative::apply_to_spec to derive a modified ChainSpec
for each scenario. Used by uselesskey-x509 to produce invalid
certificate chains for TLS error-handling tests.
Enumsยง
- Chain
Negative - Types of invalid certificate chains for negative testing.