This site will have limited functionality while we undergo maintenance to improve your experience. If an article doesn't solve your issue and you want to ask a question, we have our support community waiting to help you at @FirefoxSupport on Twitter and/r/firefox on Reddit.

Search Support

Avoid support scams. We will never ask you to call or text a phone number or share personal information. Please report suspicious activity using the “Report Abuse” option.

Learn More

TLS Extensions 65037 during client hello since firefox 118 (Windows)

  • 4 cavab
  • 0 have this problem
  • 1 view
  • Last reply by Lukasz

more options

Hello,

I see with windows Firefox version 118 a TLS extension id 65037 on every client hello handshake containing a bunch of data. Does somebody know what this extension is used for? I couldn't find anything about this on the web or in the firefox docs / release notes. Other browser (chrome / edge) don't have this extension in use.

Thanks

Hello, I see with windows Firefox version 118 a TLS extension id 65037 on every client hello handshake containing a bunch of data. Does somebody know what this extension is used for? I couldn't find anything about this on the web or in the firefox docs / release notes. Other browser (chrome / edge) don't have this extension in use. Thanks
Attached screenshots

Chosen solution

That is Encrypted Client Hello (ECH), it will go away if you change security.tls.ech.grease_probability to 0 in about:config. Chrome has it behind a flag.

Read this answer in context 👍 2

All Replies (4)

more options

Seçilmiş Həll

That is Encrypted Client Hello (ECH), it will go away if you change security.tls.ech.grease_probability to 0 in about:config. Chrome has it behind a flag.

more options

On Linux firefox 118 doesn't have this extension in use.

more options

It's a limited rollout, you can see them listed in about:support#remote-features.

more options

zeroknight said

That is Encrypted Client Hello (ECH), it will go away if you change security.tls.ech.grease_probability to 0 in about:config. Chrome has it behind a flag.

Thank you for clarification.