From 0a556a077ede05dbc31dea8136d20585fcb18411 Mon Sep 17 00:00:00 2001
From: quindecim <49964366+quindecim@users.noreply.github.com>
Date: Sat, 15 Apr 2023 22:11:21 +0200
Subject: [PATCH] Add DOH certificate generation commands into the example
 config.

https://github.com/DNSCrypt/dnscrypt-proxy/pull/2367
---
 config/dnscrypt-proxy.toml | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/config/dnscrypt-proxy.toml b/config/dnscrypt-proxy.toml
index 94cd31e..fbf5280 100644
--- a/config/dnscrypt-proxy.toml
+++ b/config/dnscrypt-proxy.toml
@@ -463,6 +463,9 @@ cache_neg_max_ttl = 600
 
 
 ## Certificate file and key - Note that the certificate has to be trusted.
+## Can be generated using the following commands:
+## openssl genpkey -genparam -algorithm ec -pkeyopt ec_paramgen_curve:P-256 -out ECPARAM.pem
+## openssl req -x509 -nodes -newkey ec:ECPARAM.pem -subj "/C=XZ/L=own PC/O=localhost/CN=localhost/" -days 5000 -sha256 -keyout localhost.pem -out localhost.pem
 ## See the documentation (wiki) for more information.
 
 # cert_file = 'localhost.pem'