From 3c62b2e6c3e17877cb4182887b1c06496ae71780 Mon Sep 17 00:00:00 2001
From: "7u83@mail.ru" <7u83@mail.ru@noemail.net>
Date: Sun, 10 Aug 2014 10:21:03 +0000
Subject: [PATCH] Changed hash algorithm to md5 so an cisco IOS 12.3-image can
 import certificate.

FossilOrigin-Name: 83d5125bc2edde8c4cf6914eeb28073524f6560cf5f7b1105644c0a64e884db1
---
 ssl/openssl.cnf | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/ssl/openssl.cnf b/ssl/openssl.cnf
index 0e319b42..b05c1862 100644
--- a/ssl/openssl.cnf
+++ b/ssl/openssl.cnf
@@ -72,7 +72,7 @@ cert_opt 	= ca_default		# Certificate field options
 
 default_days	= 365			# how long to certify for
 default_crl_days= 30			# how long before next CRL
-default_md	= default		# use public key default MD
+default_md	= md5			# use public key default MD
 preserve	= no			# keep passed DN ordering
 
 # A few difference way of specifying how similar the request should look
@@ -122,6 +122,8 @@ x509_extensions	= v3_ca	# The extentions to add to the self signed cert
 # WARNING: ancient versions of Netscape crash on BMPStrings or UTF8Strings.
 string_mask = utf8only
 
+default_md=md5
+
 # req_extensions = v3_req # The extensions to add to a certificate request
 
 [ req_distinguished_name ]