From 6f60ba3186d56bed16bd2eb7af6db09b1880ff96 Mon Sep 17 00:00:00 2001
From: Maximilian Moser <maximilian.moser@tuwien.ac.at>
Date: Thu, 4 Aug 2022 20:34:26 +0200
Subject: [PATCH] Add note about PKCS8 format in the README

---
 README.md | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/README.md b/README.md
index 9e0b2cb..983c6ac 100644
--- a/README.md
+++ b/README.md
@@ -35,6 +35,10 @@ Of course, it can be desirable to use custom certificates (that aren't self-sign
 Such key pairs can be set by placing the corresponding files (`{cluster,dashboards}-{crt,key}.pem`) in the `ssl/` directory.  
 If the script detects that they exist as regular files (and not as symlinks), it will skip the auto-generation for these files and leave them as is.
 
+Note: It looks like the private key needs to be in PKCS#8 format.
+A key generated via `openssl genrsa` can be converted with the following command:
+`openssl pkcs8 -inform PEM -outform PEM -in PRIVATE_KEY_FILE.PEM -topk8 -nocrypt -v1 PBE-SHA1-3DES -out PRIVATE_KEY_PKCS8.PEM`
+
 
 ## Security configuration
 
-- 
GitLab