== Choosing your Verification Library ==
Currently there are two hidden flags that determine what certificate verification library is usedmozilla::pkix has been enabled by firefoxdefault in Nightly. The following 'truth table' allows you to determine what verification library boolean pref "security.use_mozillapkix_verification" controls this. There is used.Note that the value of an additional hidden boolean pref "security.use_libpkix_verification" is only checked at initialization timethat can be used to enable libpkix instead.Both If both of these hidden prefs are of type booleanfalse, classic verification is used. mozilla::pkix takes precedence over libpkix.See the following table:
{|border="1" cellpadding="5" cellspacing="0" align="center"
| true
|----
|rowspan=2 | '''security.use_insanity_verificationuse_mozillapkix_verification'''| false(default)
| Classic
| libpkix
|----
|true(default)
| mozilla::pkix
| mozilla::pkix
|----
|}
