Ask Your Question
0

It seems SSLKEYLOGFILE no longer work able to decode https/tls packets on new chrome update.

asked 2024-08-25 16:50:49 +0000

rolandwu777 gravatar image

updated 2024-08-25 16:53:12 +0000

Hi,

I have been using the Pre-Master-Secret key to decode TLS and HTTPS traffic for several years. I set the SSLKEYLOGFILE environment variable under Windows for this purpose. However, about three months ago, it became unreliable and eventually stopped working almost entirely on my local machine. I started a virtual machine that I hadn't used for some time, and I was able to decode HTTPS traffic with Wireshark, but after Chrome updated itself in a few mintues later, it failed to decode any traffic. My Wireshark version is 4.2.6. I reproduced the issue on two machines.

Has anyone else experienced this issue?

edit retag flag offensive close merge delete
add a comment

1 Answer

Sort by ยป oldest newest most voted
0

answered 2024-08-25 17:39:10 +0000

rolandwu777 gravatar image

updated 2024-08-25 17:44:58 +0000

Okay, I went to Windows' Internet Properties>Advanced>Use TLS 1.3, and unchecked it and restart Chrome. It seems if I don't use TLS 1.3, it could decode it.

But still why TLS 1.3 does not work?

edit flag offensive delete link more
add a comment

Your Answer

Please start posting anonymously - your entry will be published after you log in or create a new account.

Add Answer

Question Tools

1 follower

subscribe to rss feed

Stats

Asked: 2024-08-25 16:50:49 +0000

Seen: 161 times

Last updated: Aug 25