Bug 1696997 - enable osclientcerts by default in release r=mbirghan default tip
authorDana Keeler <dkeeler@mozilla.com>
Thu, 13 May 2021 22:45:20 +0000
changeset 579613 5c402eaa028455bb2c837bb0068741f43d566787
parent 579612 ada3fbe9e608cd3efb5ed15eae17a9cfc8ba0139
push id38461
push userimoraru@mozilla.com
push dateFri, 14 May 2021 03:34:45 +0000
treeherdermozilla-central@5c402eaa0284 [default view] [failures only]
perfherder[talos] [build metrics] [platform microbench] (compared to previous push)
reviewersmbirghan
bugs1696997
milestone90.0a1
Bug 1696997 - enable osclientcerts by default in release r=mbirghan This enables the module that queries OS storage for client certificates when TLS client authentication is requested by a server. This applies to macOS and Windows only. Differential Revision: https://phabricator.services.mozilla.com/D107558
modules/libpref/init/all.js
--- a/modules/libpref/init/all.js
+++ b/modules/libpref/init/all.js
@@ -72,21 +72,17 @@ pref("security.password_lifetime",      
 pref("security.family_safety.mode", 2);
 
 pref("security.enterprise_roots.enabled", false);
 
 // If true, attempt to load the osclientcerts PKCS#11 module at startup on a
 // background thread. This module allows Firefox to use client certificates
 // stored in OS certificate storage. Currently only available for Windows and
 // macOS.
-#ifdef EARLY_BETA_OR_EARLIER
-  pref("security.osclientcerts.autoload", true);
-#else
-  pref("security.osclientcerts.autoload", false);
-#endif
+pref("security.osclientcerts.autoload", true);
 
 // The supported values of this pref are:
 // 0: do not fetch OCSP
 // 1: fetch OCSP for DV and EV certificates
 // 2: fetch OCSP only for EV certificates
 pref("security.OCSP.enabled", 1);
 pref("security.OCSP.require", false);
 #ifdef RELEASE_OR_BETA