Emmanuel Lepavec wrote:
How about hacking the code? I have not analyzed this particular function but if it really is just because of a security check like Steve said it should not be hard to find.Bernhard Froehlich wrote:If you could detail your intended use it may be clearer for me why you want to do that. Remember that it's very easy to do wrong things in cryptographic applications, so I'm always a bit suspicious if someone has a "non standard use"... ;)Actually, I do not use OpenSSL in a concrete application. I use it as a trusted Oracle for testing my own implementation. And, for complete testing, I need to be able to perform every private key operation with the minimum of available information (ie. without public key info). It includes "non standard" operation such as encryption. For this, I do not need any security countermeasure. So, if there is a way to disable checks that requires the public key, please tell! ;-)
Ted ;) -- PGP Public Key Information Download complete Key from http://www.convey.de/ted/tedkey_convey.asc Key fingerprint = 31B0 E029 BCF9 6605 DAC1 B2E1 0CC8 70F4 7AFB 8D26
smime.p7s
Description: S/MIME Cryptographic Signature
