Using

[email protected]

The code will query _dmarc.corp -> I verified with Wireshark

Refs:

• https://datatracker.ietf.org/doc/html/rfc6762#appendix-G
• https://serverfault.com/a/937808/336084
• https://unix.stackexchange.com/a/672298/155610

The code should probably query dmarc.domain.corp instead.
There is a few special TLDs on the links I mentioned

Some validation code (used in Laravel) explicitly has such a list hard coded: https://github.com/egulias/EmailValidator/blob/877577656387a3ffabae60dd4c425059179834cb/src/Validation/DNSCheckValidation.php#L23-L40

I was looking at how to use this library in the context of a long-lived application, specifically for sealing/signing emails, and am a bit confused as to what I should create once and reuse vs create at every operation.

My first thought was that I would need to import the RSA private key once at startup, pass it around, and instantiate/configure a sealer each time. However, RsaKey does not implement Clone, and ArcSealer::from_key() doesn't take a reference to a key, so that rules it out.

My second thought was that I would create an ArcSealer at startup and configure it when needed, since it appears to implement Clone. However, it depends, on both the State and the Signing Key being Clone, which they are not. So I could not configure the ArcSealer instance since I did not have a mutable reference.

My third attempt, and current one, is to create an ArcSealer and configure it at startup. Hence what I'm passing around is a Arc<ArcSealer<RsaKey<Sha256>, Done>>. Am I doing this right? :)

Thanks for the library!

I have an error verifying the DKIM signature of emails whose content is empty.
I believe there is a bug in the body hash calculation if the message body is empty.

Here are the tests I performed when the email is empty and when the email only contains the word "toto".

Empty:

https://mxtoolbox.com/deliverability/274cfab4-394e-474c-993d-9c1531f2f04f

Not empty:

https://mxtoolbox.com/deliverability/eb6c7a5a-5145-4290-baec-3a72bff09d70

I'm currently testing this library and excuse me if this isn't correct but if SPF or DKIM fail for a message shouldn't the resulting output from verify_dmarc be a failure? Currently it looks like the default of None is returned.

Sorry if this isn't clear but I'm having some issues working through the logic of the dmarc verification and checking what's expected.

As an example the signature here is expired, but I think a similar thing happens if the SPF record is invalid (I change the IP address so it is a fail):

spf_result: SpfOutput { result: Pass, domain: "scsworld.co.uk", report: None, explanation: None }
dkim_result: [DkimOutput { result: Neutral(SignatureExpired), signature: ... x: 1699708744, t: 1699103944, r: false, atps: None, atpsh: None, ch: Relaxed, cb: Relaxed }), report: None, is_atps: false }]
dmarc_result: DmarcOutput { spf_result: Pass, dkim_result: None, domain: "scsworld.co.uk", policy: Reject, record: Some(Dmarc { v: V1, adkim: Relaxed, aspf: Relaxed, fo: Any, np: None, p: Reject, psd: Default, pct: 100, rf: 1, ri: 86400, rua: [URI { uri: ..., max_size: 0 }, URI ..., sp: None, t: false }) }

Shouldn't the output here actually be Fail not None?

Hi, just attempting a basic hello world mail-send, but compilation always fails on mail-auth:

Compiling mail-auth v0.3.7
error[E0599]: no method named unescape_value found for struct Attribute in the current scope
--> /Users/jim/.cargo/registry/src/index.crates.io-6f17d22bba15001f/mail-auth-0.3.7/src/report/dmarc/parse.rs:317:48
|
317 | if let Ok(attr) = attr.unescape_value() {
| ^^^^^^^^^^^^^^ help: there is a method with a similar name: decode_and_unescape_value

error[E0599]: no method named unescape_value found for struct Attribute in the current scope
--> /Users/jim/.cargo/registry/src/index.crates.io-6f17d22bba15001f/mail-auth-0.3.7/src/report/dmarc/parse.rs:322:48
|
322 | if let Ok(attr) = attr.unescape_value() {
| ^^^^^^^^^^^^^^ help: there is a method with a similar name: decode_and_unescape_value

For more information about this error, try rustc --explain E0599.
error: could not compile mail-auth (lib) due to 2 previous errors

my basic fn:

pub async fn email_report(machines: Vec<Machine>) {
    // Build a simple multipart message
    // More examples of how to build messages available at
    // https://github.com/stalwartlabs/mail-builder/tree/main/examples
    let message = MessageBuilder::new()
        .from(("someone", "[email protected]"))
        .to("other", "[email protected]")
        .subject("Hi!")
        .text_body("Hello world!");

    // Connect to the SMTP submissions port, upgrade to TLS and
    // authenticate using the provided credentials.
    SmtpClientBuilder::new("smtp.gmail.com", 587)
        .implicit_tls(false)
        .credentials(("someone", "p@ssw0rd"))
        .connect()
        .await
        .unwrap()
        .send(message)
        .await
        .unwrap();

}

my googling has not thrown anything useful up, hoping someone here can be more help, as I'd like to use these libraries.

Hi, this crate is looking great, thanks for open sourcing! I was wondering, would you be open to maintaining alternative implementations for the required crypto primitives from ring, using an opt-in Cargo feature? In projects where rustls is already required, this saves on dependencies; it also looks like ed25519-dalek pulls in an obsolete version of rand.

Other minor points of feedback in random order:

• I noticed that there are no rustfmt or clippy checks in the CI config even though the project is fmt/clippy clean, probably good to add?
• Also acronyms in type names are not matching the recommended spelling from RFC 430 -- I can send a PR for this if you like. A potential sticking point is what ARC should be called, maybe Arc would be too confusing? I would suggest ArChain plus some docs, maybe?
• is_within_pct() could probably use some comments on what it's trying to achieve and how.
• In the DKIM crate I was working on that I'm considering replacing with this, I was writing out signatures etc into a fmt::Write instead of io::Write, which preserves the notion that the outcome is valid UTF-8. Maybe good to do that here, too? Also I would recommend not importing std::io::Write directly to avoid confusion between the two, I usually import std::fmt/std::io and then use io::Write/fmt::Write.
• The fmt::Display impl for Error is inconsistent about using . at the end of strings -- I usually prefer to avoid them since it's easier/faster to add them later in surrounding context rather than the other way around.

I can file separate issues for these if you prefer.

Hello, thanks for taking time to make these great libraries. Is wasm support something that's possible?

I was able to use mail-parser in a wasm environment, but haven't had the same luck for mail-auth.

Thank you!

Is mail-auth a Mail Transfer Agent?
Or how to connect mail-auth with a MTA like postfix?

This project's README.md doesn't tell.

Hey, currently passing x=value where the time is passed to a DKIM signature will cause the signature to be marked as Neutral.

I don't think this is the right call. I could take an email that has been completely modified from the original (for example changing the from header) and instead of failing it will now be neutral. I understand that doing this skips the requirement of validation before it takes place because the signature has expired anyway but I think it might be better to either, 1> continue validation and pass neutral if the signature passes or 2> just go ahead and fail the signature as it's actually now invalid.

I'd be happy to put a pull request forward but it would be good to get a steer on your thinking first?

The design in 4383fcc seems a little surprising. What is the test feature intended to do? Is there a reason not to use #[cfg(test)] directly? It seems kinda strange that running the tests requires the test feature (otherwise a bunch of tests fail). Usually Cargo features should be additive, such that code compiles (and passes tests) whether the feature is enabled or not.

In my next step working on ring-based crypto impls, I'm running into an issue that I'd like your thoughts on before I go off in the wrong direction. In 3a571ed you added a Clone derive to the types that implement SigningKey for use in tests. However, ring's private key types generally don't implement Clone -- which is a kind of misuse-resistance that I value, making it harder to accidentally leak private material through a code base.

How do you think we should solve this? I could change ArcSealer/DkimSigner to take a Cow, which would allow the caller to decide whether they just want to just pass a reference instead of key ownership. Alternatively, I could change the tests to parse the key material once for every sealer/signer it wants to set up.

I just tried the example in /examples/dkim_verify.rs and it fails with:

thread 'main' panicked at 'assertion failed: result.iter().all(|s| s.result() == &DkimResult::Pass)', examples/dkim_verify.rs:52:5

it seems that the header parsing code does not handle header values that span multiple lines. Was this working before?