I'm trying to set up SSL/TLS with x-pack and running into this when I point to pem encoded files:
java.lang.IllegalArgumentException: parsed an unsupported object [PKCS8EncryptedPrivateKeyInfo] at org.elasticsearch.xpack.ssl.CertUtils.readPrivateKey(CertUtils.java:268) ~[?:?] at org.elasticsearch.xpack.ssl.PEMKeyConfig.readPrivateKey(PEMKeyConfig.java:80) ~[?:?]
elasticsearch.yml includes all of these settings
xpack.ssl.certificate_authorities: [ "/path/to/cacert.pem" ]
When I use certgen to generate CA & node certificates I get PKCS1 keys, and pointing to them in elasticsearch.yml works fine. How can I use keys/certs that were generated this way: https://www.elastic.co/guide/en/shield/current/certificate-authority.html ?