From lkd-pyopenssl at sky-haven.net  Fri Apr  6 06:48:08 2018
From: lkd-pyopenssl at sky-haven.net (lkd-pyopenssl at sky-haven.net)
Date: Fri, 6 Apr 2018 11:48:08 +0100
Subject: [pyOpenSSL-Users] CRL signature algorithm
In-Reply-To: <241a83f67d711c9b8ea58ce10cb8b806@gotlinux.nl>
References: <241a83f67d711c9b8ea58ce10cb8b806@gotlinux.nl>
Message-ID: <20180406104808.GA82214@lancepc>

On 2018-02-14T11:27:09+0100, L?on Keijser wrote:
> Hi,
> 
> When creating a CRL file, it's generated with a md5WithRSAEncryption 
> signature algorithm. Under CentOS7 this is a problem for OpenVPN, which 
> requires sha256WithRSAEncryption.
> 
> I've been busy googling the entire morning, and reading docs etc., but I 
> can't find anything how to change this behavior.

(https://pyopenssl.readthedocs.io/en/latest/api/crypto.html#crl-objects)

`OpenSSL.crypto.CRL.export(digest=)` ?