Skip to content

HTTPS clone URL

Subversion checkout URL

You can clone with
or
.
Download ZIP
A python module for verifying X509 smime signatures
Pull request Compare This branch is 65 commits behind hepix-virtualisation:master.

Fetching latest commit…

Cannot retrieve the latest commit at this time

Failed to load latest commit information.
smimeX509validation
.gitignore
ChangeLog
LICENSE
MANIFEST.in
README
TODO
message_signed_validation.py
outline_code.py
setup.py

README

Dear all,

This code is very alpha, and intended to be developed fast.

The aim of this code is to authenticate signed image lists 
to facilitate sharing of VM's across HTC sites for high 
energy physics.

The code may be come more universal.

Contributors.
~~~~~~~~~~~~~

Below is a list of contributors. If you help in this project please add your
name.

Owen Synge : owen.synge@desy.de

Comments and feedback:

David Groep : davidg@nikhef.nl


How to verify.
~~~~~~~~~~~~~~

To get the DN and CA of your signature.

openssl smime -in your_signed.msg \
 -pk7out | openssl pkcs7 -print_certs

To Verify the message against the CA certificate.

openssl smime -in your_signed.msg \
 -CAfile /etc/grid-security/certificates/dd4b34ea.0 \
 -verify 1> /dev/null 


Whats developed.
~~~~~~~~~~~~~~~~

loadcanamespace.py is a simeple library developed to automate and
simplify the authentication of signed messages.

Thier is a small demo application for checking one or more signed 
messages.

# python message_signed_validation.py -h
Usage: message_signed_validation.py [options]

Options:
  -h, --help            show this help message and exit
  -m MESSAGE, --message=MESSAGE
                        adds a message to be tested.
  -c CERTS_DIR, --certs-dir=CERTS_DIR
                        Path of certificates dir
Something went wrong with that request. Please try again.