Revision history [back]

You indeed seem to satisfy the required conditions to use RSA private key files: - TLS_RSA_WITH_AES_256_GCM_SHA384 uses a RSA key exchange (instead of a DH key exchange). - No session resumption is in use. - You have supposedly captured the full handshake (starting with the Client Hello).

Since lookup(KeyID) is followed by lookup result: (nil), it suggests that the private key was not correctly matched. Can you see lines such as:

ssl_init private key file /path/to/your/private.key successfully loaded.

Before that line, a KeyID is printed. Does that match with the lookup(KeyID) entry?

You indeed seem to satisfy the required conditions to use RSA private key files: - files:

• TLS_RSA_WITH_AES_256_GCM_SHA384 uses a RSA key exchange (instead of a DH key exchange). - exchange).
• No session resumption is in use. - use.
• You have supposedly captured the full handshake (starting with the Client Hello).

Since lookup(KeyID) is followed by lookup result: (nil), it suggests that the private key was not correctly matched. Can you see lines such as:

ssl_init private key file /path/to/your/private.key successfully loaded.

Before that line, a KeyID is printed. Does that match with the lookup(KeyID) entry?

You indeed seem to satisfy the required conditions to use RSA private key files:

• TLS_RSA_WITH_AES_256_GCM_SHA384 uses a RSA key exchange (instead of a DH key exchange).
• No session resumption is in use.
• You have supposedly captured the full handshake (starting with the Client Hello).

Since lookup(KeyID) is followed by lookup result: (nil), it suggests that the private key was not correctly matched. Can you see lines such as:

ssl_init private key file /path/to/your/private.key successfully loaded.

Before that line, a KeyID is printed. Does that match with the lookup(KeyID) entry?