From 5a6e29e4a8d0df1dcb58810f5809cd820220467e Mon Sep 17 00:00:00 2001
From: Joas Schilling <coding@schilljs.com>
Date: Wed, 22 Mar 2017 08:54:40 +0100
Subject: [PATCH] Remove ownCloud Root Authority as per todo

Signed-off-by: Joas Schilling <coding@schilljs.com>
---
 lib/private/IntegrityCheck/Checker.php | 9 +--------
 1 file changed, 1 insertion(+), 8 deletions(-)

diff --git a/lib/private/IntegrityCheck/Checker.php b/lib/private/IntegrityCheck/Checker.php
index 419f989fa0..d051dae11a 100644
--- a/lib/private/IntegrityCheck/Checker.php
+++ b/lib/private/IntegrityCheck/Checker.php
@@ -347,14 +347,7 @@ class Checker {
 		$x509->loadCA($rootCertificatePublicKey);
 		$x509->loadX509($certificate);
 		if(!$x509->validateSignature()) {
-			// FIXME: Once Nextcloud has it's own appstore we should remove the ownCloud Root Authority from here
-			$x509 = new \phpseclib\File\X509();
-			$rootCertificatePublicKey = $this->fileAccessHelper->file_get_contents($this->environmentHelper->getServerRoot().'/resources/codesigning/owncloud.crt');
-			$x509->loadCA($rootCertificatePublicKey);
-			$x509->loadX509($certificate);
-			if(!$x509->validateSignature()) {
-				throw new InvalidSignatureException('Certificate is not valid.');
-			}
+			throw new InvalidSignatureException('Certificate is not valid.');
 		}
 		// Verify if certificate has proper CN. "core" CN is always trusted.
 		if($x509->getDN(X509::DN_OPENSSL)['CN'] !== $certificateCN && $x509->getDN(X509::DN_OPENSSL)['CN'] !== 'core') {