New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Upgrade from Logstash 2.3.4 to 2.4.0 causes beats input to fail due to PKCS8 error #5865

Closed
alefebvre-ls opened this Issue Sep 6, 2016 · 3 comments

Comments

Projects
None yet
2 participants
@alefebvre-ls

alefebvre-ls commented Sep 6, 2016

Upon upgrading from 2.3.4 to 2.4.0, i started getting this error due to my beats inputs:

Looks like you either have an invalid key or your private key was not in PKCS8 format.

Although the breaking changes does not indicate this error would occur with the beats input unless the key is converted to PKCS8 format. Although I realize this was an issue with the logstash-input-beats plugin and not directly logstash itself, upgrading to logstash 2.4.0 directly caused logstash to upgrade to logstash-input-beats plugin >= 3.1.0, which introduces the changes to how the keys/certs are handled.

I finally found out this was documented on a blog post although this probably should have also been indicated in the breaking changes as it is relatively major considering events were no longer being processed due to this.

@ph

This comment has been minimized.

Show comment
Hide comment
@ph

ph Sep 6, 2016

Member

@alefebvre-ls I will update the breaking changes with that note, we mentioned it in the changelog/blost post but didn't do it in the breaking changes.

Member

ph commented Sep 6, 2016

@alefebvre-ls I will update the breaking changes with that note, we mentioned it in the changelog/blost post but didn't do it in the breaking changes.

@ph ph self-assigned this Sep 6, 2016

@ph ph added the docs label Sep 6, 2016

@ph

This comment has been minimized.

Show comment
Hide comment
@ph

ph Sep 6, 2016

Member

On a related note, which version of openssl you are using to generate the keys?

Member

ph commented Sep 6, 2016

On a related note, which version of openssl you are using to generate the keys?

@alefebvre-ls

This comment has been minimized.

Show comment
Hide comment
@alefebvre-ls

alefebvre-ls Sep 6, 2016

To generate the keys, we are using OpenSSL 1.0.1f 6 (Jan 2014)

alefebvre-ls commented Sep 6, 2016

To generate the keys, we are using OpenSSL 1.0.1f 6 (Jan 2014)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment