sshsk_sign: trim call to sshkey_fingerprint()

the resulting fingerprint doesn't appear to be used for anything,
and we end up leaking it.

from Pedro Martelletto; ok dtucker & me

diff --git a/usr.bin/ssh/ssh-sk-client.c b/usr.bin/ssh/ssh-sk-client.c
index afd8080..71d639e 100644 (file)
--- a/usr.bin/ssh/ssh-sk-client.c
+++ b/usr.bin/ssh/ssh-sk-client.c
@@ -1,4 +1,4 @@
-/* $OpenBSD: ssh-sk-client.c,v 1.10 2021/10/28 02:54:18 djm Exp $ */
+/* $OpenBSD: ssh-sk-client.c,v 1.11 2022/01/14 03:32:52 djm Exp $ */
 /*
  * Copyright (c) 2019 Google LLC
  *
@@ -230,7 +230,6 @@ sshsk_sign(const char *provider, struct sshkey *key,
     u_int compat, const char *pin)
 {
        int oerrno, r = SSH_ERR_INTERNAL_ERROR;
-       char *fp = NULL;
        struct sshbuf *kbuf = NULL, *req = NULL, *resp = NULL;
 
        *sigp = NULL;
@@ -256,12 +255,6 @@ sshsk_sign(const char *provider, struct sshkey *key,
                goto out;
        }
 
-       if ((fp = sshkey_fingerprint(key, SSH_FP_HASH_DEFAULT,
-           SSH_FP_DEFAULT)) == NULL) {
-               error_f("sshkey_fingerprint failed");
-               r = SSH_ERR_ALLOC_FAIL;
-               goto out;
-       }
        if ((r = client_converse(req, &resp, SSH_SK_HELPER_SIGN)) != 0)
                goto out;