upstream: cleanup unnecessary code in ECDSA pkcs#11 signature

work by markus@, feedback and ok djm@ OpenBSD-Commit-ID: affa5ca7d58d59fbd16169f77771dcdbd2b0306d
2025-07-31 01:35:11 +02:00 · 2019-01-20 23:00:12 +00:00 · 2019-01-20 23:00:12 +00:00 · 749aef3032
commit 749aef3032
parent 0c50992af4
1 changed files with 16 additions and 25 deletions
--- a/ssh-pkcs11.c
+++ b/ssh-pkcs11.c
@ -1,4 +1,4 @@
-/* $OpenBSD: ssh-pkcs11.c,v 1.28 2019/01/20 22:51:37 djm Exp $ */
+/* $OpenBSD: ssh-pkcs11.c,v 1.29 2019/01/20 23:00:12 djm Exp $ */
 /*
 * Copyright (c) 2010 Markus Friedl.  All rights reserved.
 * Copyright (c) 2014 Pedro Martelletto. All rights reserved.
@ -411,7 +411,6 @@ ecdsa_do_sign(const unsigned char *dgst, int dgst_len, const BIGNUM *inv,
 	CK_RV			rv;
 	ECDSA_SIG		*ret = NULL;
 	u_char			*sig;
-	const u_char		*cp;

 	if ((k11 = EC_KEY_get_ex_data(ec, 0)) == NULL) {
 		ossl_error("EC_KEY_get_key_method_data failed for ec");
@ -435,13 +434,6 @@ ecdsa_do_sign(const unsigned char *dgst, int dgst_len, const BIGNUM *inv,
 		error("C_Sign failed: %lu", rv);
 		goto done;
 	}
-	cp = sig;
-	ret = d2i_ECDSA_SIG(NULL, &cp, siglen);
-	if (ret == NULL) {
-		/*
-		 * d2i_ECDSA_SIG failed, so sig does not point to a DER-encoded
-		 * sequence, but to the concatenation r|s.
-		 */
 	if (siglen < 64 || siglen > 132 || siglen % 2) {
 		ossl_error("d2i_ECDSA_SIG failed");
 		goto done;
@ -458,7 +450,6 @@ ecdsa_do_sign(const unsigned char *dgst, int dgst_len, const BIGNUM *inv,
 		ret = NULL;
 		goto done;
 	}
-	}
 done:
 	free(sig);