From 1102abca53b622534bad4f688bd77ec2f3a3fa12 Mon Sep 17 00:00:00 2001
From: Simon Josefsson <simon@josefsson.org>
Date: Wed, 7 Feb 2007 08:37:17 +0000
Subject: dsa key

---
 doc/gnutls.texi | 14 ++++++++++++++
 1 file changed, 14 insertions(+)

diff --git a/doc/gnutls.texi b/doc/gnutls.texi
index d0b5082394..9ae424cd0b 100644
--- a/doc/gnutls.texi
+++ b/doc/gnutls.texi
@@ -2399,6 +2399,18 @@ gnutls-serv --http \
 Try connecting to the server using your web browser.  Note that the
 server listens to port 5556 by default.
 
+While you are at it, to allow connections using DSA, you can also
+create a DSA key and certificate for the server.  These credentials
+will be used in the final example below.
+
+@example
+certtool --generate-privkey --dsa > x509-server-key-dsa.pem
+certtool --generate-certificate --load-privkey x509-server-key-dsa.pem \
+  --load-ca-certificate x509-ca.pem --load-ca-privkey x509-ca-key.pem \
+  --template server.tmpl --outfile x509-server-dsa.pem
+...
+@end example
+
 The next step is to create OpenPGP credentials for the server.
 
 @example
@@ -2462,6 +2474,8 @@ gnutls-serv --http \
             --x509cafile x509-ca.pem \
             --x509keyfile x509-server-key.pem \
             --x509certfile x509-server.pem \
+            --x509dsakeyfile x509-server-key-dsa.pem \
+            --x509dsacertfile x509-server-dsa.pem \
             --pgpkeyfile openpgp-server-key.txt \
             --pgpcertfile openpgp-server.txt \
             --srppasswdconf srp-tpasswd.conf \
-- 
cgit v1.2.1