Don't downgrade keys in libssl

We were downgrading to legacy keys at various points in libssl in order to get or set an encoded point. Now that the encoded point functions work with provided keys this is no longer necessary. Reviewed-by: Shane Lontis <shane.lontis@oracle.com> (Merged from https://github.com/openssl/openssl/pull/11898)
author: Matt Caswell <matt@openssl.org> 2020-06-02 08:57:26 +0100
committer: Matt Caswell <matt@openssl.org> 2020-06-05 11:04:11 +0100
commit: 7b2d995ed79f0653defd682e5097ed937f4cabbc (patch)
tree: 3790348b098fc259f3ae11e1505b54e9eaa5e2b4 /ssl/t1_lib.c
parent: 7fa2b2673edd684ceb94ff19346f08121da9774f (diff)
1 files changed, 0 insertions, 11 deletions
diff --git a/ssl/t1_lib.c b/ssl/t1_lib.c
index a59d992e47..68bd5f2611 100644
--- a/ssl/t1_lib.c
+++ b/ssl/t1_lib.c
@@ -1217,17 +1217,6 @@ int tls12_check_peer_sigalg(SSL *s, uint16_t sig, EVP_PKEY *pkey)
     const SIGALG_LOOKUP *lu;
     int secbits = 0;
 
-    /*
-     * TODO(3.0) Remove this when we adapted this function for provider
-     * side keys.  We know that EVP_PKEY_get0() downgrades an EVP_PKEY
-     * to contain a legacy key.
-     *
-     * THIS IS TEMPORARY
-     */
-    EVP_PKEY_get0(pkey);
-    if (EVP_PKEY_id(pkey) == EVP_PKEY_NONE)
-        return 0;
-
     pkeyid = EVP_PKEY_id(pkey);
     /* Should never happen */
     if (pkeyid == -1)
author	Matt Caswell <matt@openssl.org>	2020-06-02 08:57:26 +0100
committer	Matt Caswell <matt@openssl.org>	2020-06-05 11:04:11 +0100
commit	7b2d995ed79f0653defd682e5097ed937f4cabbc (patch)
tree	3790348b098fc259f3ae11e1505b54e9eaa5e2b4 /ssl/t1_lib.c
parent	7fa2b2673edd684ceb94ff19346f08121da9774f (diff)