MailKit Documentation
API Reference
MimeKit.Cryptography
ApplicationPgpEncrypted Class
ApplicationPgpSignature Class
ApplicationPkcs7Mime Class
ApplicationPkcs7Signature Class
ArcHeaderValidationResult Class
ArcSignatureValidationResult Enumeration
ArcSigner Class
ArcValidationErrors Enumeration
ArcValidationResult Class
ArcVerifier Class
AsymmetricAlgorithmExtensions Class
AuthenticationMethodProperty Class
AuthenticationMethodResult Class
AuthenticationResults Class
BouncyCastleCertificateExtensions Class
BouncyCastleSecureMimeContext Class
CertificateNotFoundException Class
CmsRecipient Class
CmsRecipientCollection Class
CmsSigner Class
CryptographyContext Class
DefaultSecureMimeContext Class
DigestAlgorithm Enumeration
DigitalSignatureCollection Class
DigitalSignatureVerifyException Class
DkimCanonicalizationAlgorithm Enumeration
DkimPublicKeyLocatorBase Class
DkimSignatureAlgorithm Enumeration
DkimSigner Class
DkimSignerBase Class
DkimVerifier Class
DkimVerifierBase Class
EncryptionAlgorithm Enumeration
GnuPGContext Class
IApplicationPgpEncrypted Interface
IApplicationPgpSignature Interface
IApplicationPkcs7Mime Interface
IApplicationPkcs7Signature Interface
ICryptographyContext Interface
IDigitalCertificate Interface
IDigitalSignature Interface
IDkimPublicKeyLocator Interface
IMultipartEncrypted Interface
IMultipartSigned Interface
ISecureMimeContext Interface
IX509CertificateDatabase Interface
MultipartEncrypted Class
MultipartSigned Class
OpenPgpContext Class
OpenPgpDataType Enumeration
OpenPgpDetectionFilter Class
OpenPgpDigitalCertificate Class
OpenPgpDigitalSignature Class
OpenPgpKeyCertification Enumeration
PrivateKeyNotFoundException Class
PublicKeyAlgorithm Enumeration
PublicKeyNotFoundException Class
RsaEncryptionPadding Class
RsaEncryptionPaddingScheme Enumeration
RsaSignaturePadding Class
RsaSignaturePaddingScheme Enumeration
SecureMailboxAddress Class
SecureMimeContext Class
SecureMimeDigitalCertificate Class
SecureMimeDigitalSignature Class
SecureMimeType Enumeration
SqlCertificateDatabase Class
SqliteCertificateDatabase Class
SQLServerCertificateDatabase Class
SubjectIdentifierType Enumeration
TemporarySecureMimeContext Class
WindowsSecureMimeContext Class
WindowsSecureMimeDigitalCertificate Class
WindowsSecureMimeDigitalSignature Class
X509Certificate2Extensions Class
X509CertificateChain Class
X509CertificateDatabase Class
X509CertificateDatabase.CertificateColumnNames Class
X509CertificateDatabase.CrlColumnNames Class
X509CertificateRecord Class
X509CertificateRecordFields Enumeration
X509CertificateStore Class
X509CrlRecord Class
X509CrlRecordFields Enumeration
X509KeyUsageBits Enumeration
X509KeyUsageFlags Enumeration
Click or drag to resize
MimeKit

ArcSignatureValidationResult Enumeration

An ARC signature validation result.

Namespace: MimeKit.Cryptography
Assembly: MimeKit (in MimeKit.dll) Version: 4.12.0
Syntax
C#
Copy
public enum ArcSignatureValidationResult
Members
Member nameValueDescription
None0 No signatures to validate.
Pass1 The validation passed.
Fail2 The validation failed.
Remarks
An ARC signature validation result.
Example
C#
Copy
using System;
using System.IO;
using System.Text;
using System.Threading;
using System.Threading.Tasks;
using System.Collections.Generic;

using Heijden.DNS;

using Org.BouncyCastle.Crypto;

using MimeKit;
using MimeKit.Cryptography;

namespace ArcVerifierExample
{
    // Note: By using the DkimPublicKeyLocatorBase, we avoid having to parse the DNS TXT records
    // in order to get the public key ourselves.
    class ExamplePublicKeyLocator : DkimPublicKeyLocatorBase
    {
        readonly Dictionary<string, AsymmetricKeyParameter> cache;
        readonly Resolver resolver;

        public ExamplePublicKeyLocator ()
        {
            cache = new Dictionary<string, AsymmetricKeyParameter> ();

            resolver = new Resolver ("8.8.8.8") {
                TransportType = TransportType.Udp,
                UseCache = true,
                Retries = 3
            };
        }

        AsymmetricKeyParameter DnsLookup (string domain, string selector, CancellationToken cancellationToken)
        {
            var query = selector + "._domainkey." + domain;
            AsymmetricKeyParameter pubkey;

            // checked if we've already fetched this key
            if (cache.TryGetValue (query, out pubkey))
                return pubkey;

            // make a DNS query
            var response = resolver.Query (query, QType.TXT);
            var builder = new StringBuilder ();

            // combine the TXT records into 1 string buffer
            foreach (var record in response.RecordsTXT) {
                foreach (var text in record.TXT)
                    builder.Append (text);
            }

            var txt = builder.ToString ();

            // DkimPublicKeyLocatorBase provides us with this helpful method.
            pubkey = GetPublicKey (txt);

            cache.Add (query, pubkey);

            return pubkey;
        }

        public AsymmetricKeyParameter LocatePublicKey (string methods, string domain, string selector, CancellationToken cancellationToken = default (CancellationToken))
        {
            var methodList = methods.Split (new char[] { ':' }, StringSplitOptions.RemoveEmptyEntries);
            for (int i = 0; i < methodList.Length; i++) {
                if (methodList[i] == "dns/txt")
                    return DnsLookup (domain, selector, cancellationToken);
            }

            throw new NotSupportedException (string.Format ("{0} does not include any supported lookup methods.", methods));
        }

        public Task<AsymmetricKeyParameter> LocatePublicKeyAsync (string methods, string domain, string selector, CancellationToken cancellationToken = default (CancellationToken))
        {
            return Task.Run (() => {
                return LocatePublicKey (methods, domain, selector, cancellationToken);
            }, cancellationToken);
        }
    }

    class Program
    {
        public static void Main (string[] args)
        {
            if (args.Length == 0) {
                Help ();
                return;
            }

            for (int i = 0; i < args.Length; i++) {
                if (args[i] == "--help") {
                    Help ();
                    return;
                }
            }

            var locator = new ExamplePublicKeyLocator ();
            var verifier = new ArcVerifier (locator);

            for (int i = 0; i < args.Length; i++) {
                if (!File.Exists (args[i])) {
                    Console.Error.WriteLine ("{0}: No such file.", args[i]);
                    continue;
                }

                Console.Write ("{0} -> ", args[i]);

                var message = MimeMessage.Load (args[i]);
                var result = verifier.Verify (message);

                switch (result.Chain) {
                case ArcSignatureValidationResult.None:
                    Console.WriteLine ("No ARC signatures to verify.");
                    break;
                case ArcSignatureValidationResult.Pass:
                    Console.ForegroundColor = ConsoleColor.Green;
                    Console.WriteLine ("PASS");
                    Console.ResetColor ();
                    break;
                case ArcSignatureValidationResult.Fail:
                    Console.ForegroundColor = ConsoleColor.Red;
                    Console.WriteLine ("FAIL");
                    Console.ResetColor ();
                    break;
                }
            }
        }

        static void Help ()
        {
            Console.WriteLine ("Usage is: ArcVerifier [options] [messages]");
            Console.WriteLine ();
            Console.WriteLine ("Options:");
            Console.WriteLine ("  --help               This help menu.");
        }
    }
}
See Also