summaryrefslogtreecommitdiff
path: root/conf/plugins/addrblock.opt
diff options
context:
space:
mode:
Diffstat (limited to 'conf/plugins/addrblock.opt')
-rw-r--r--conf/plugins/addrblock.opt8
1 files changed, 8 insertions, 0 deletions
diff --git a/conf/plugins/addrblock.opt b/conf/plugins/addrblock.opt
new file mode 100644
index 000000000..e35e4c5ad
--- /dev/null
+++ b/conf/plugins/addrblock.opt
@@ -0,0 +1,8 @@
+charon.plugins.addrblock.strict = yes
+ Whether to strictly require addrblock extension in subject certificates.
+
+ If set to yes, a subject certificate without an addrblock extension is
+ rejected if the issuer certificate has such an addrblock extension. If set
+ to no, subject certificates issued without the addrblock extension are
+ accepted without any traffic selector checks and no policy is enforced
+ by the plugin.
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-10 19:35:53 +0000