commit 4ecb5beb8b20be55fa378dc638616a7899d8bea7 parent 2030b61a1b9e778ba2e59accb960a81242ed5341 Author: Michael Kaply <345868+mkaply@users.noreply.github.com> Date: Thu, 20 Nov 2025 15:31:01 +0000 Bug 2000929 - ImportEnterpriseRoots should be truthy. r=gcp Differential Revision: https://phabricator.services.mozilla.com/D273077 Diffstat:
| M | toolkit/components/enterprisepolicies/EnterprisePoliciesParent.sys.mjs | | | 6 | +++++- |
1 file changed, 5 insertions(+), 1 deletion(-)
diff --git a/toolkit/components/enterprisepolicies/EnterprisePoliciesParent.sys.mjs b/toolkit/components/enterprisepolicies/EnterprisePoliciesParent.sys.mjs @@ -120,11 +120,15 @@ EnterprisePoliciesManager.prototype = { // Because security.enterprise_roots.enabled is true by default, we can // ignore attempts by Antivirus to try to set it via policy. + // We have to explicitly check for true or 1 because this happens before + // policy is parsed against the schema, so the value could be coming + // from the registry. if ( Object.keys(provider.policies).length === 1 && provider.policies.Certificates && Object.keys(provider.policies.Certificates).length === 1 && - provider.policies.Certificates.ImportEnterpriseRoots === true + (provider.policies.Certificates.ImportEnterpriseRoots === true || + provider.policies.Certificates.ImportEnterpriseRoots === 1) ) { this.status = Ci.nsIEnterprisePolicies.INACTIVE; return;