Generate hashCAFile with SHA256

In a FIPS environment, it's much easier to switch to SHA256 than it is
to verify and explain that any particular use of MD5 is actually safe
in-context.

Signed-off-by: Nick Thomas <[email protected]>

Author: Nick Thomas

config/http_config.go

@@ -17,7 +17,7 @@ package config
 
 import (
 	"bytes"
-	"crypto/md5"
+	"crypto/sha256"
 	"crypto/tls"
 	"crypto/x509"
 	"fmt"
@@ -533,7 +533,7 @@ func (t *tlsRoundTripper) getCAWithHash() ([]byte, []byte, error) {
 	if err != nil {
 		return nil, nil, err
 	}
-	h := md5.Sum(b)
+	h := sha256.Sum256(b)
 	return b, h[:], nil
 
 }