email sig ntests

Author: Hendler

LINES_OF_CODE.md

@@ -1,13 +1,13 @@
 ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
  Language              Files        Lines         Code     Comments       Blanks
 ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
- Go                       13         4810         3571          587          652
- Python                  155        34534        27061         1621         5852
- TypeScript                9         3134         1660         1236          238
+ Go                       11         3858         2888          455          515
+ Python                  179        42456        33223         1867         7366
+ TypeScript               29         7857         5604         1577          676
 ─────────────────────────────────────────────────────────────────────────────────
- Rust                    354       101187        83405         5735        12047
- |- Markdown             260        25449          667        18762         6020
- (Total)                           126636        84072        24497        18067
+ Rust                    393       123260       102168         6468        14624
+ |- Markdown             298        26491          648        19682         6161
+ (Total)                           149751       102816        26150        20785
 ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
- Total                   531       169114       116364        27941        24809
+ Total                   612       203922       144531        30049        29342
 ━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━

jacs/src/email/canonicalize.rs

@@ -34,6 +34,15 @@ pub fn extract_email_parts(raw_email: &[u8]) -> Result<ParsedEmailParts, EmailEr
             .push(value);
     }
 
+    // Validate that the parsed message has a From header (RFC 5322 required).
+    // mail_parser accepts garbage input and returns a Message with empty headers;
+    // this gate ensures we fail early on non-email input.
+    if !headers.contains_key("from") {
+        return Err(EmailError::InvalidEmailFormat(
+            "missing required From header".into(),
+        ));
+    }
+
     // Extract body parts
     let body_plain = extract_body_part(&message, "text/plain");
     let body_html = extract_body_part(&message, "text/html");
@@ -530,15 +539,6 @@ pub fn compute_attachment_hash(filename: &str, content_type: &str, raw_bytes: &[
     format!("sha256:{}", hex::encode(hash))
 }
 
-/// Strip trailing whitespace bytes (CR, LF, SP, TAB) from a byte slice.
-pub(crate) fn strip_trailing_whitespace(bytes: &[u8]) -> &[u8] {
-    let mut end = bytes.len();
-    while end > 0 && matches!(bytes[end - 1], b'\r' | b'\n' | b' ' | b'\t') {
-        end -= 1;
-    }
-    &bytes[..end]
-}
-
 /// Strip trailing CRLF/LF bytes from MIME-decoded content.
 ///
 /// Only strips line terminators (\r, \n), NOT spaces or tabs.
@@ -695,7 +695,7 @@ mod tests {
     #[test]
     fn extract_email_parts_returns_error_on_garbage() {
         let result = extract_email_parts(b"not an email at all");
-        assert!(result.is_err() || result.unwrap().headers.is_empty());
+        assert!(result.is_err(), "garbage input must return Err");
     }
 
     #[test]

jacs/src/email/error.rs

@@ -88,7 +88,32 @@ pub fn check_email_size(raw_email: &[u8]) -> Result<(), EmailError> {
 
 impl From<EmailError> for crate::error::JacsError {
     fn from(e: EmailError) -> Self {
-        crate::error::JacsError::CryptoError(e.to_string())
+        use crate::error::JacsError;
+        match &e {
+            // Crypto-related errors
+            EmailError::SignatureVerificationFailed(_)
+            | EmailError::AlgorithmMismatch(_) => JacsError::CryptoError(e.to_string()),
+
+            // Validation / malformed-input errors
+            EmailError::InvalidEmailFormat(_)
+            | EmailError::CanonicalizationFailed(_)
+            | EmailError::MissingJacsSignature
+            | EmailError::InvalidJacsDocument(_)
+            | EmailError::ContentTampered(_)
+            | EmailError::EmailTooLarge { .. }
+            | EmailError::UnsupportedFeature(_) => JacsError::ValidationError(e.to_string()),
+
+            // Document / structural errors
+            EmailError::ChainVerificationFailed(_) => JacsError::DocumentError(e.to_string()),
+
+            // Network / registry errors
+            EmailError::SignerKeyNotFound(_)
+            | EmailError::DNSVerificationFailed(_) => JacsError::NetworkError(e.to_string()),
+
+            // Identity / trust errors
+            EmailError::IdentityMismatch(_)
+            | EmailError::ReplayDetected(_) => JacsError::TrustError(e.to_string()),
+        }
     }
 }
 
@@ -219,9 +244,33 @@ mod tests {
 
     #[test]
     fn email_error_converts_to_jacs_error() {
-        let email_err = EmailError::MissingJacsSignature;
-        let jacs_err: crate::error::JacsError = email_err.into();
-        let msg = format!("{}", jacs_err);
-        assert!(msg.contains("Missing jacs-signature.json"));
+        // Validation errors
+        let jacs_err: crate::error::JacsError = EmailError::MissingJacsSignature.into();
+        assert!(
+            matches!(jacs_err, crate::error::JacsError::ValidationError(_)),
+            "MissingJacsSignature should map to ValidationError, got: {:?}",
+            jacs_err
+        );
+        assert!(format!("{}", jacs_err).contains("Missing jacs-signature.json"));
+
+        // Crypto errors
+        let jacs_err: crate::error::JacsError =
+            EmailError::SignatureVerificationFailed("bad sig".into()).into();
+        assert!(matches!(jacs_err, crate::error::JacsError::CryptoError(_)));
+
+        // Network errors
+        let jacs_err: crate::error::JacsError =
+            EmailError::DNSVerificationFailed("timeout".into()).into();
+        assert!(matches!(jacs_err, crate::error::JacsError::NetworkError(_)));
+
+        // Trust errors
+        let jacs_err: crate::error::JacsError =
+            EmailError::IdentityMismatch("wrong issuer".into()).into();
+        assert!(matches!(jacs_err, crate::error::JacsError::TrustError(_)));
+
+        // Document errors
+        let jacs_err: crate::error::JacsError =
+            EmailError::ChainVerificationFailed("broken link".into()).into();
+        assert!(matches!(jacs_err, crate::error::JacsError::DocumentError(_)));
     }
 }

jacs/src/email/sign.rs

@@ -168,12 +168,10 @@ fn prepare_for_forwarding(
         Err(e) => return Err(e),
     };
 
-    // Compute parent_signature_hash = sha256(normalized bytes of existing jacs-signature.json)
-    // Strip trailing whitespace for consistency with verification-side hash computation
-    let trimmed_jacs_bytes = strip_trailing_ws(&jacs_bytes);
+    // Compute parent_signature_hash = sha256(exact bytes of existing jacs-signature.json)
     let parent_hash = {
         let mut hasher = Sha256::new();
-        hasher.update(trimmed_jacs_bytes);
+        hasher.update(&jacs_bytes);
         format!("sha256:{}", hex::encode(hasher.finalize()))
     };
 
@@ -434,17 +432,14 @@ pub fn build_jacs_email_document(
     })
 }
 
-// Use shared strip_trailing_whitespace from canonicalize module (DRY).
-use super::canonicalize::strip_trailing_whitespace as strip_trailing_ws;
-
 /// Canonical JSON per RFC 8785 (JSON Canonicalization Scheme / JCS).
 ///
 /// Uses the `serde_json_canonicalizer` crate for full compliance including:
 /// - Sorted keys
 /// - IEEE 754 number serialization
 /// - Minimal Unicode escape handling
 /// - No unnecessary whitespace
-pub(crate) fn canonicalize_json_rfc8785(value: &serde_json::Value) -> String {
+pub fn canonicalize_json_rfc8785(value: &serde_json::Value) -> String {
     serde_json_canonicalizer::to_string(value).unwrap_or_else(|_| "null".to_string())
 }
 

jacs/src/email/types.rs

@@ -210,6 +210,53 @@ pub struct ContentVerificationResult {
     pub chain: Vec<ChainEntry>,
 }
 
+/// HAI-specific email verification result that wraps JACS content verification
+/// and adds registry + DNS fields.
+///
+/// This is the canonical definition used by both haisdk and the HAI API.
+#[derive(Debug, Clone, Serialize, Deserialize)]
+pub struct EmailVerificationResultV2 {
+    /// Overall validity: false if any verification step fails.
+    pub valid: bool,
+    /// JACS agent ID of the signer (from registry).
+    #[serde(default)]
+    pub jacs_id: String,
+    /// Signing algorithm.
+    #[serde(default)]
+    pub algorithm: String,
+    /// HAI reputation tier (e.g., "free_chaotic", "dns_certified", "fully_certified").
+    #[serde(default)]
+    pub reputation_tier: String,
+    /// DNS verification result. None if DNS check was skipped (free tier).
+    #[serde(skip_serializing_if = "Option::is_none")]
+    pub dns_verified: Option<bool>,
+    /// Per-field verification results (from JACS content verification).
+    #[serde(default)]
+    pub field_results: Vec<FieldResult>,
+    /// Forwarding chain entries.
+    #[serde(default, skip_serializing_if = "Vec::is_empty")]
+    pub chain: Vec<ChainEntry>,
+    /// Error message if verification failed.
+    #[serde(skip_serializing_if = "Option::is_none")]
+    pub error: Option<String>,
+}
+
+impl EmailVerificationResultV2 {
+    /// Create an error result with the given fields.
+    pub fn err(jacs_id: &str, reputation_tier: &str, error: &str) -> Self {
+        Self {
+            valid: false,
+            jacs_id: jacs_id.to_string(),
+            algorithm: String::new(),
+            reputation_tier: reputation_tier.to_string(),
+            dns_verified: None,
+            field_results: Vec::new(),
+            chain: Vec::new(),
+            error: Some(error.to_string()),
+        }
+    }
+}
+
 #[cfg(test)]
 mod tests {
     use super::*;