Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Extra LF breaks DKIM in certain forward scenarios (and mail gets rejected) #260

Closed
xadhoom opened this issue Apr 27, 2021 · 1 comment
Closed

Extra LF breaks DKIM in certain forward scenarios (and mail gets rejected) #260

xadhoom opened this issue Apr 27, 2021 · 1 comment

Comments

@xadhoom
Copy link
Contributor

xadhoom commented Apr 27, 2021

Scenario:

gen_smtp (latest) that sends a multipart/alternative email to an upstream mailserver.
Upstream mailserver applies DKIM and then forwards to final destination.

Until here all is good.

If the final destination is an Office365 mailserver that forwards to gmail, email is marked as spam by gmail.

So, in order to recap:

  • gen_stmp -> mailserver (dkim) -> Office365 ok
  • gen_stmp -> mailserver (dkim) -> Gmail ok
  • gen_stmp -> mailserver (dkim) -> Office365 -> Gmail not ok (mail detected as spam)

After investigating and comparing to other mail clients, we discovered that when encoding a multipart body an extra whiteline is added between the multipart/alternative component and the parts, for example

--_=4g116a4p31245o2q4h634e3y354m3103=_
Content-Type: multipart/alternative;
	boundary="_=513719676i276h6k6a4h1j326j3m5c32=_"
Content-Disposition: inline

<<<< I'm the Extra Empty Line >>>
--_=513719676i276h6k6a4h1j326j3m5c32=_
Content-Type: text/plain;
	 charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline

...omissis...
--_=513719676i276h6k6a4h1j326j3m5c32=_
Content-Type: text/html;
	 charset="utf-8"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline

...omissis...
--_=513719676i276h6k6a4h1j326j3m5c32=_--

--_=4g116a4p31245o2q4h634e3y354m3103=_
Content-Transfer-Encoding: base64
Content-Id: <calendar.ics>
Content-Type: text/calendar;
	 method="REQUEST"
Content-Disposition: inline

...omissis...

--_=4g116a4p31245o2q4h634e3y354m3103=_--

When Office365 forwards the email, it "cleans up" that empty line, resulting into the DKIM body signature no more valid, so Gmail mark it as spam.

Other clients do not add this extra empty line when composing multipart/mixed content.

The RFC is not very clear if it's allowed or not. Looking into the code the extra line is added here which should not be needed since encode_component adds it already at the beginning of the component.

A quick test done by removing that extra line seems to fix the issue, but I'm not sure if it is correct or breaks something else.
mworrell pushed a commit that referenced this issue May 3, 2021
@xadhoom
Remove extra new line on multipart encoding (#260) (#261)
18ad70d
@xadhoom
Copy link
Contributor Author

xadhoom commented May 4, 2021

Closed via #261

@xadhoom xadhoom closed this as completed May 4, 2021
mworrell pushed a commit that referenced this issue Sep 21, 2021
@xadhoom @mworrell
Remove extra new line on multipart encoding (#260) (#261)
f6a73f8
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@xadhoom