1 | initial version |
If you can absolutely not decrypt any traffic even if the key log file is correctly written and configured in Wireshark, my guess is that you have some kind of anti-virus software running that basically terminates your TLS connection and creates a new connection.
If that is the case, you should be able to observe Certificate messages that are not signed by a trusted Certificate Authority (CA).