r509.yaml in r509-0.10.0 vs r509.yaml in r509-1.0

- old
+ new

@@ -21,11 +21,11 @@
     ocsp_start_skew_seconds: 3600
     ocsp_validity_hours: 168
     crl_list_file: spec/fixtures/test_ca_crl_list.txt
     crl_number_file: spec/fixtures/test_ca_crl_number.txt
     crl_validity_hours: 168
-    crl_md: SHA1
+    crl_md: SHA256
     profiles:
       server:
         basic_constraints:
           :ca: false
           :critical: true
@@ -62,15 +62,14 @@
             :value: http://domain.com/ca.html
         crl_distribution_points:
           :value:
           - :type: URI
             :value: http://crl.domain.com/test_ca.crl
-        default_md: SHA1
+        default_md: SHA256
         allowed_mds:
         - SHA256
         - SHA512
-        - SHA1
       client:
         basic_constraints:
           :ca: false
         key_usage:
           :value:
@@ -89,15 +88,14 @@
             :value: http://domain.com/ca.html
         crl_distribution_points:
           :value:
           - :type: URI
             :value: http://crl.domain.com/test_ca.crl
-        default_md: SHA1
+        default_md: SHA256
         allowed_mds:
         - SHA256
         - SHA512
-        - SHA1
       email:
         basic_constraints:
           :ca: false
         key_usage:
           :value:
@@ -116,15 +114,14 @@
             :value: http://domain.com/ca.html
         crl_distribution_points:
           :value:
           - :type: URI
             :value: http://crl.domain.com/test_ca.crl
-        default_md: SHA1
+        default_md: SHA256
         allowed_mds:
         - SHA256
         - SHA512
-        - SHA1
       clientserver:
         basic_constraints:
           :ca: false
         key_usage:
           :value:
@@ -144,15 +141,14 @@
             :value: http://domain.com/ca.html
         crl_distribution_points:
           :value:
           - :type: URI
             :value: http://crl.domain.com/test_ca.crl
-        default_md: SHA1
+        default_md: SHA256
         allowed_mds:
         - SHA256
         - SHA512
-        - SHA1
       codesigning:
         basic_constraints:
           :ca: false
         key_usage:
           :value:
@@ -170,15 +166,14 @@
             :value: http://domain.com/ca.html
         crl_distribution_points:
           :value:
           - :type: URI
             :value: http://crl.domain.com/test_ca.crl
-        default_md: SHA1
+        default_md: SHA256
         allowed_mds:
         - SHA256
         - SHA512
-        - SHA1
       timestamping:
         basic_constraints:
           :ca: false
         key_usage:
           :value:
@@ -196,15 +191,14 @@
             :value: http://domain.com/ca.html
         crl_distribution_points:
           :value:
           - :type: URI
             :value: http://crl.domain.com/test_ca.crl
-        default_md: SHA1
+        default_md: SHA256
         allowed_mds:
         - SHA256
         - SHA512
-        - SHA1
       subroot:
         basic_constraints:
           :ca: true
           :path_length: 0
         key_usage:
@@ -259,15 +253,14 @@
             :value: http://domain.com/ca.html
         crl_distribution_points:
           :value:
           - :type: URI
             :value: http://crl.domain.com/test_ca.crl
-        default_md: SHA1
+        default_md: SHA256
         allowed_mds:
         - SHA256
         - SHA512
-        - SHA1
       ocsp_delegate:
         basic_constraints:
           :ca: false
         key_usage:
           :value:
@@ -280,10 +273,9 @@
           - :type: URI
             :value: http://crl.domain.com/test_ca.crl
         ocsp_no_check:
           :critical: false
           :value: true
-        default_md: SHA1
+        default_md: SHA256
         allowed_mds:
         - SHA256
         - SHA512
-        - SHA1