Compare commits
7 Commits
| Author | SHA1 | Date | |
|---|---|---|---|
 Scott Kitterman
|
6a1705926f | ||
|
Scott Kitterman
|
e6f8db9f94 | ||
|
Scott Kitterman
|
e63867d517 | ||
|
Scott Kitterman
|
209ad11661 | ||
|
Scott Kitterman
|
795a914845 | ||
|
Scott Kitterman
|
be92e5c5b1 | ||
|
Scott Kitterman
|
6910ff1f9a |
@@ -1,3 +1,9 @@
|
|||||||
|
1.1.2 2019-09-23
|
||||||
|
- Fix variable initialization so mailformed mails missing body From do not
|
||||||
|
cause a traceback (LP: #1844161)
|
||||||
|
- Catch more ascii encoding errors to improve resilience against bad data
|
||||||
|
(LP: #1844189)
|
||||||
|
|
||||||
1.1.1 2019-09-06
|
1.1.1 2019-09-06
|
||||||
- Fix startup logging so it provides information at a useful time
|
- Fix startup logging so it provides information at a useful time
|
||||||
- Fix verify processing so missing (optional) i= tag doesn't cause the milter
|
- Fix verify processing so missing (optional) i= tag doesn't cause the milter
|
||||||
|
|||||||
@@ -55,6 +55,7 @@ class dkimMilter(Milter.Base):
|
|||||||
self.privatersa = privateRSA
|
self.privatersa = privateRSA
|
||||||
self.privateed25519 = privateEd25519
|
self.privateed25519 = privateEd25519
|
||||||
self.fp = None
|
self.fp = None
|
||||||
|
self.fdomain = ''
|
||||||
|
|
||||||
@Milter.noreply
|
@Milter.noreply
|
||||||
def connect(self, hostname, unused, hostaddr):
|
def connect(self, hostname, unused, hostaddr):
|
||||||
@@ -136,14 +137,18 @@ class dkimMilter(Milter.Base):
|
|||||||
try:
|
try:
|
||||||
self.fdomain = self.author.split('@')[1].lower()
|
self.fdomain = self.author.split('@')[1].lower()
|
||||||
except IndexError as er:
|
except IndexError as er:
|
||||||
self.fdomain = '' # self.author was not a proper email address
|
pass # self.author was not a proper email address
|
||||||
if (milterconfig.get('Syslog') and
|
if (milterconfig.get('Syslog') and
|
||||||
milterconfig.get('debugLevel') >= 1):
|
milterconfig.get('debugLevel') >= 1):
|
||||||
syslog.syslog("{0}: {1}".format(name, val))
|
syslog.syslog("{0}: {1}".format(name, val))
|
||||||
elif lname == 'authentication-results':
|
elif lname == 'authentication-results':
|
||||||
self.arheaders.append(val)
|
self.arheaders.append(val)
|
||||||
if self.fp:
|
if self.fp:
|
||||||
self.fp.write(b"%s: %s\n" % (codecs.encode(name, 'ascii'), codecs.encode(val, 'ascii')))
|
try:
|
||||||
|
self.fp.write(b"%s: %s\n" % (codecs.encode(name, 'ascii'), codecs.encode(val, 'ascii')))
|
||||||
|
except:
|
||||||
|
# Don't choke on header fields with non-ascii garbage in them.
|
||||||
|
pass
|
||||||
return Milter.CONTINUE
|
return Milter.CONTINUE
|
||||||
|
|
||||||
@Milter.noreply
|
@Milter.noreply
|
||||||
@@ -260,6 +265,7 @@ class dkimMilter(Milter.Base):
|
|||||||
|
|
||||||
def check_dkim(self, txt):
|
def check_dkim(self, txt):
|
||||||
res = False
|
res = False
|
||||||
|
self.header_a = None
|
||||||
for y in range(self.has_dkim): # Verify _ALL_ the signatures
|
for y in range(self.has_dkim): # Verify _ALL_ the signatures
|
||||||
d = dkim.DKIM(txt)
|
d = dkim.DKIM(txt)
|
||||||
try:
|
try:
|
||||||
@@ -293,8 +299,16 @@ class dkimMilter(Milter.Base):
|
|||||||
self.header_i = codecs.decode(d.signature_fields.get(b'i'), 'ascii')
|
self.header_i = codecs.decode(d.signature_fields.get(b'i'), 'ascii')
|
||||||
except TypeError as x:
|
except TypeError as x:
|
||||||
self.header_i = None
|
self.header_i = None
|
||||||
self.header_d = codecs.decode(d.signature_fields.get(b'd'), 'ascii')
|
try:
|
||||||
self.header_a = codecs.decode(d.signature_fields.get(b'a'), 'ascii')
|
self.header_d = codecs.decode(d.signature_fields.get(b'd'), 'ascii')
|
||||||
|
self.header_a = codecs.decode(d.signature_fields.get(b'a'), 'ascii')
|
||||||
|
except Exception as x:
|
||||||
|
self.dkim_comment = str(x)
|
||||||
|
if milterconfig.get('Syslog'):
|
||||||
|
syslog.syslog("check_dkim: {0}".format(x))
|
||||||
|
self.header_d = None
|
||||||
|
if not self.header_a:
|
||||||
|
self.header_a = 'rsa-sha256'
|
||||||
if res:
|
if res:
|
||||||
if (milterconfig.get('Syslog') and
|
if (milterconfig.get('Syslog') and
|
||||||
(milterconfig.get('SyslogSuccess') or
|
(milterconfig.get('SyslogSuccess') or
|
||||||
@@ -314,20 +328,27 @@ class dkimMilter(Milter.Base):
|
|||||||
syslog.syslog('DKIM: Fail (saved as {0})'
|
syslog.syslog('DKIM: Fail (saved as {0})'
|
||||||
.format(fname))
|
.format(fname))
|
||||||
else:
|
else:
|
||||||
syslog.syslog('DKIM: Fail ({0})'.format(d.domain.lower()))
|
if milterconfig.get('Syslog'):
|
||||||
|
if d.domain:
|
||||||
|
syslog.syslog('DKIM: Fail ({0})'
|
||||||
|
.format(d.domain.lower()))
|
||||||
|
else:
|
||||||
|
syslog.syslog('DKIM: Fail, unextractable domain')
|
||||||
if res:
|
if res:
|
||||||
result = 'pass'
|
result = 'pass'
|
||||||
else:
|
else:
|
||||||
result = 'fail'
|
result = 'fail'
|
||||||
res = False
|
res = False
|
||||||
self.arresults.append(
|
if self.header_d:
|
||||||
authres.DKIMAuthenticationResult(result=result,
|
self.arresults.append(
|
||||||
|
authres.DKIMAuthenticationResult(result=result,
|
||||||
header_i=self.header_i,
|
header_i=self.header_i,
|
||||||
header_d=self.header_d,
|
header_d=self.header_d,
|
||||||
header_a=self.header_a,
|
header_a=self.header_a,
|
||||||
result_comment=
|
result_comment=
|
||||||
self.dkim_comment)
|
self.dkim_comment)
|
||||||
)
|
)
|
||||||
|
self.header_a = None
|
||||||
return
|
return
|
||||||
|
|
||||||
# get parent domain to be signed for if fdomain is a subdomain
|
# get parent domain to be signed for if fdomain is a subdomain
|
||||||
|
|||||||
@@ -30,7 +30,7 @@ except ImportError: # If PyDNS is not installed, prefer dnspython
|
|||||||
|
|
||||||
setup(
|
setup(
|
||||||
name='dkimpy-milter',
|
name='dkimpy-milter',
|
||||||
version='1.1.1',
|
version='1.1.2',
|
||||||
author='Scott Kitterman',
|
author='Scott Kitterman',
|
||||||
author_email='scott@kitterman.com',
|
author_email='scott@kitterman.com',
|
||||||
url='https://launchpad.net/dkimpy-milter',
|
url='https://launchpad.net/dkimpy-milter',
|
||||||
|
|||||||
Reference in New Issue
Block a user