From 7c74e6615dcf3d1ec288028ee1e49d2556cafffe Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?P=C5=99emysl=20Eric=20Janouch?= <p@janouch.name>
Date: Mon, 26 Sep 2022 13:56:45 +0200
Subject: xD: use SHA-256 for certificate fingerprints

Just like xS.  2.0.0 is the ideal time for such a breaking change.
---
 README.adoc | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'README.adoc')

diff --git a/README.adoc b/README.adoc
index 0bf29b2..beb03b4 100644
--- a/README.adoc
+++ b/README.adoc
@@ -141,10 +141,10 @@ Client Certificates
 certificate specified by the respective server's `tls_cert` option if you add
 `sasl` to the `capabilities` option and the server supports this.
 
-'xD' uses SHA-1 fingerprints of TLS client certificates to authenticate users.
+'xD' uses SHA-256 fingerprints of TLS client certificates to authenticate users.
 To get the fingerprint from a certificate file in the required form, use:
 
- $ openssl x509 -in public.pem -outform DER | sha1sum
+ $ openssl x509 -in public.pem -outform DER | sha256sum
 
 Custom Key Bindings in xC
 -------------------------
-- 
cgit v1.2.3