 | 1 | initial version |
I found my problem! The pms is created with a command like this:
tshark -r decrypt.pcap -Y f5ethtrailer.tls.keylog -Tfields -e f5ethtrailer.tls.keylog > ./pre_master_log.pms
It turns out my file was created encoded in utf-16le (tshak man page does say it will if output is TTY on and on Windows). wireshark does not seem to like that. converting it to utf-8 fixed it.
Thanks!
| | 2 | No.2 Revision |
I found my problem! The pms is created with a command like this:
It turns out my file was created encoded in utf-16le (tshak man page does say it will if output is TTY on and on Windows). wireshark does not seem to like that. converting it to utf-8 fixed it.
Thanks!