* tool/downloader.rb: Removed verification of gem certification.

  Because signed gem is not working on rubygems ecosystem.
* tool/gem-unpack.rb: ditto.

git-svn-id: svn+ssh://ci.ruby-lang.org/ruby/trunk@56399 b2dd03c8-39d4-4d8f-98ff-823fe69b080e

1 files changed, 0 insertions, 15 deletions

diff --git a/tool/downloader.rb b/tool/downloader.rb
index aa5490f96f..6c34f73ca2 100644
--- a/tool/downloader.rb
+++ b/tool/downloader.rb
@@ -59,27 +59,12 @@ class Downloader
   class RubyGems < self
     def self.download(name, dir = nil, since = true, options = {})
       require 'rubygems'
-      require 'rubygems/package'
       verify = options.delete(:verify) {Gem::VERSION >= "2.4."}
       options[:ssl_ca_cert] = Dir.glob(File.expand_path("../lib/rubygems/ssl_certs/**/*.pem", File.dirname(__FILE__)))
       file = under(dir, name)
       super("https://rubygems.org/downloads/#{name}", file, nil, since, options) or
         return false
       return true unless verify
-      policy = Gem::Security::LowSecurity
-      (policy = policy.dup).ui = Gem::SilentUI.new if policy.respond_to?(:'ui=')
-      pkg = Gem::Package.new(file)
-      pkg.security_policy = policy
-      begin
-        $stdout.puts "verifying #{name}"
-        pkg.verify
-      rescue Gem::Security::Exception => e
-        $stderr.puts "#{name}: #{e.message}"
-        File.unlink(file)
-        false
-      else
-        true
-      end
     end
   end