Update to SHA256 for TSA signing digest.
authorRich Salz <rsalz@openssl.org>
Wed, 30 Dec 2015 23:18:08 +0000 (18:18 -0500)
committerRich Salz <rsalz@openssl.org>
Wed, 30 Dec 2015 23:18:08 +0000 (18:18 -0500)
Reviewed-by: Richard Levitte <levitte@openssl.org>
apps/openssl-vms.cnf

index 51a296b..94caf45 100644 (file)
@@ -335,7 +335,7 @@ signer_cert = $dir/tsacert.pem      # The TSA signing certificate
 certs          = $dir.cacert.pem]      # Certificate chain to include in reply
                                        # (optional)
 signer_key     = $dir/private/tsakey.pem # The TSA private key (optional)
-signer_digest  = sha1                  # Signing digest to use. (Optional)
+signer_digest  = sha256                        # Signing digest to use. (Optional)
 
 default_policy = tsa_policy1           # Policy if request did not specify it
                                        # (optional)