First time here? Check out the FAQ!

Ask Your Question
0

It seems SSLKEYLOGFILE no longer work able to decode https/tls packets on new chrome update.
 
  
 
 
     
 
 
 
 
 
 
 
    
        
        asked Aug 25 '4  
 
 rolandwu777 gravatar image  
 
 
 
 
    
        
        updated Aug 25 '4  
 
 
 
 
 
Hi,
 
I have been using the Pre-Master-Secret key to decode TLS and HTTPS traffic for several years. I set the SSLKEYLOGFILE environment variable under Windows for this purpose. However, about three months ago, it became unreliable and eventually stopped working almost entirely on my local machine. I started a virtual machine that I hadn't used for some time, and I was able to decode HTTPS traffic with Wireshark, but after Chrome updated itself in a few mintues later, it failed to decode any traffic. My Wireshark version is 4.2.6. I reproduced the issue on two machines.
 
Has anyone else experienced this issue?
 
Preview: (hide)
 
 
 
 
          
 
add a comment
 
 
 
 
 
 1 Answer
    
 
 
                    Sort by »
                     oldest newest most voted 
 
 
 
 
 
  
 
 
 
 
0
 
 
  
 
 
 
 
 
 
 
 
    
        
        answered Aug 25 '4  
 
 rolandwu777 gravatar image  
 
 
 
 
    
        
        updated Aug 25 '4  
 
 
 
 
 
Okay, I went to Windows' Internet Properties>Advanced>Use TLS 1.3, and unchecked it and restart Chrome. It seems if I don't use TLS 1.3, it could decode it.
 
But still why TLS 1.3 does not work?
 
Preview: (hide)
 
 
 
 
         
        link
        
 
add a comment
 
 
 
 
  
 
 
 
 

    
        Your Answer
    

 
 Please start posting anonymously - your entry will be published after you log in or create a new account.

    

 
 
Add Answer
 
 
 
 
 
 
 
 
   
  
 
   
 
 
 
 
 
 
 
 
Question Tools
  
 

        
        
            1 follower
        
    
 
 
 subscribe to rss feed 
 
 
 
 
 
 
Stats
 

        Asked:  Aug 25 '4  
 
 
        Seen: 506 times 
 

        Last updated: Aug 25 '24