bug: incoming email feature fails #12436

New issue

Open

opened 2026-05-06 16:07:55 +02:00 by jogchum · 3 comments

jogchum commented 2026-05-06 16:07:55 +02:00 (Migrated from codeberg.org)

Copy link

Can you reproduce the bug on the Forgejo test instance?

No, I can't try it on the test instance for some reason

Description

The incoming email feature fails to process email replies when the token in the reply-to address is lowercase. I only tested on my own self hosted instance (also on a local gitea instance, it has the same issue). That is why I set the first question to "no".

• Forgejo generates reply-to addresses like: ⁠incoming+ABC123@example.com
• Some email clients (confirmed with Hey email client) normalize email addresses to lowercase
• The address becomes: ⁠incoming+abc123@example.com
• Forgejo fails to decode the token with error: ⁠illegal base32 data at input byte 0

I think this happens because:

• Tokens are base32-encoded (which uses uppercase A-Z and digits 2-7)
• The decode function in ⁠services/mailer/token/token.go line 85 is case-sensitive
• When the token is lowercased, base32 decoding fails

This potentially affects any email client that normalizes email addresses to lowercase.

As far as I understand Forgejo checks multiple headers for tokens (To, Delivered-To, and References), so this affects all token extraction paths.

Steps to reproduce:

1. Configure incoming email feature
2. Create an issue to trigger a notification
3. Either: use Hey email client to reply, OR manually lowercase the token in the reply-to address
4. Check logs for the error

Forgejo Version

15.0.1+gitea-1.22.0

How are you running Forgejo?

Running in Kubernetes using Helm chart forgejo-helm/forgejo version 17.0.1

Configuration: PostgreSQL database, Valkey (Redis) for cache/session/queue, Minio (Garage S3) for storage, incoming email via IMAP (imap.forwardemail.net)

Logs

I added some line numbers to the logging, the error is on line 5. It's actually the only log that gets through when sending an email in.

Logs with DEBUG level enabled

 1  2026/05/06 13:54:41 ...c/net/http/server.go:2286:ServeHTTP() [I] PING DATABASE postgresschema
 2  2026/05/06 13:54:41 ...eb/routing/logger.go:102:func1() [I] router: completed GET /api/healthz for [redacted]:36922, 200 OK in 2.2ms @ healthcheck/check.go:67(healthcheck.Check)
 3  2026/05/06 13:54:51 ...c/net/http/server.go:2286:ServeHTTP() [I] PING DATABASE postgresschema
 4  2026/05/06 13:54:51 ...eb/routing/logger.go:102:func1() [I] router: completed GET /api/healthz for [redacted]:54786, 200 OK in 2.2ms @ healthcheck/check.go:67(healthcheck.Check)
 5  2026/05/06 13:54:55 ...incoming/incoming.go:277:processMessages() [E] Error while processing incoming email[0]: illegal base32 data at input byte 0
 6  2026/05/06 13:54:59 ...eb/routing/logger.go:102:func1() [I] router: completed GET /metrics for [redacted]:46572, 200 OK in 29.0ms @ web/metrics.go:16(web.Metrics)
 7  2026/05/06 13:55:01 ...c/net/http/server.go:2286:ServeHTTP() [I] PING DATABASE postgresschema
 8  2026/05/06 13:55:01 ...eb/routing/logger.go:102:func1() [I] router: completed GET /api/healthz for [redacted]:59926, 200 OK in 1.9ms @ healthcheck/check.go:67(healthcheck.Check)

Database

PostgreSQL

### Can you reproduce the bug on the Forgejo test instance? No, I can't try it on the test instance for some reason ### Description The incoming email feature fails to process email replies when the token in the reply-to address is lowercase. I only tested on my own self hosted instance (also on a local gitea instance, it has the same issue). That is why I set the first question to "no". - Forgejo generates reply-to addresses like: ⁠incoming+ABC123@example.com - Some email clients (confirmed with Hey email client) normalize email addresses to lowercase - The address becomes: ⁠incoming+abc123@example.com - Forgejo fails to decode the token with error: ⁠`illegal base32 data at input byte 0` I think this happens because: - Tokens are base32-encoded (which uses uppercase A-Z and digits 2-7) - The decode function in ⁠services/mailer/token/token.go line 85 is case-sensitive - When the token is lowercased, base32 decoding fails This potentially affects any email client that normalizes email addresses to lowercase. As far as I understand Forgejo checks multiple headers for tokens (To, Delivered-To, and References), so this affects all token extraction paths. Steps to reproduce: 1. Configure incoming email feature 2. Create an issue to trigger a notification 3. Either: use Hey email client to reply, OR manually lowercase the token in the reply-to address 4. Check logs for the error ### Forgejo Version 15.0.1+gitea-1.22.0 ### How are you running Forgejo? Running in Kubernetes using Helm chart forgejo-helm/forgejo version 17.0.1 Configuration: PostgreSQL database, Valkey (Redis) for cache/session/queue, Minio (Garage S3) for storage, incoming email via IMAP (imap.forwardemail.net) ### Logs I added some line numbers to the logging, the error is on line 5. It's actually the only log that gets through when sending an email in. <details> <summary>Logs with DEBUG level enabled</summary> ``` 1 2026/05/06 13:54:41 ...c/net/http/server.go:2286:ServeHTTP() [I] PING DATABASE postgresschema 2 2026/05/06 13:54:41 ...eb/routing/logger.go:102:func1() [I] router: completed GET /api/healthz for [redacted]:36922, 200 OK in 2.2ms @ healthcheck/check.go:67(healthcheck.Check) 3 2026/05/06 13:54:51 ...c/net/http/server.go:2286:ServeHTTP() [I] PING DATABASE postgresschema 4 2026/05/06 13:54:51 ...eb/routing/logger.go:102:func1() [I] router: completed GET /api/healthz for [redacted]:54786, 200 OK in 2.2ms @ healthcheck/check.go:67(healthcheck.Check) 5 2026/05/06 13:54:55 ...incoming/incoming.go:277:processMessages() [E] Error while processing incoming email[0]: illegal base32 data at input byte 0 6 2026/05/06 13:54:59 ...eb/routing/logger.go:102:func1() [I] router: completed GET /metrics for [redacted]:46572, 200 OK in 29.0ms @ web/metrics.go:16(web.Metrics) 7 2026/05/06 13:55:01 ...c/net/http/server.go:2286:ServeHTTP() [I] PING DATABASE postgresschema 8 2026/05/06 13:55:01 ...eb/routing/logger.go:102:func1() [I] router: completed GET /api/healthz for [redacted]:59926, 200 OK in 1.9ms @ healthcheck/check.go:67(healthcheck.Check) ``` </details> ### Database PostgreSQL

Gusted commented 2026-05-07 20:24:25 +02:00 (Migrated from codeberg.org)

Copy link

The straightforward fix would be to upper-case it before it goes into verification. Marking as good first issue.

The straightforward fix would be to upper-case it before it goes into verification. Marking as good first issue.

abidos commented 2026-05-07 23:03:27 +02:00 (Migrated from codeberg.org)

Copy link

Hey @Gusted! I would love to work on it! pls assign it to me!

Hey @Gusted! I would love to work on it! pls assign it to me!

Gusted commented 2026-05-07 23:11:31 +02:00 (Migrated from codeberg.org)

Copy link

@abidos the comment enough is to indicate you're working on it. We don't really use the assignee feature otherwise.

@abidos the comment enough is to indicate you're working on it. We don't really use the assignee feature otherwise.

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

forgejo

bp-v15.0/forgejo-49f9cc7

v15.0/forgejo

v11.0/forgejo

renovate/forgejo-postcss

renovate/forgejo-github.com-fsnotify-fsnotify-1.x

renovate/forgejo-github.com-alecthomas-chroma-v2-2.x

renovate/forgejo-github.com-go-webauthn-webauthn-0.x

v14.0/forgejo

bp-v15.0/forgejo-2176403

bp-v14.0/forgejo-9767ceb

bp-v14.0/forgejo-d996dfb

v13.0/forgejo

bp-v13.0/forgejo-dc0a63e

bp-v13.0/forgejo-e7ef2eb

v12.0/forgejo

bp-v12.0/forgejo-cf1fda8-a511e37

bp-v11.0/forgejo-b52cec7

v7.0/forgejo

v10.0/forgejo

v9.0/forgejo

v8.0/forgejo

v1.21/forgejo

v1.20/forgejo

v1.19/forgejo

v1.18/forgejo

v1.17/forgejo

v14.0.5

v15.0.1

v11.0.13

v15.0.0

v14.0.4

v11.0.12

v16.0.0-dev

v14.0.3

v11.0.11

v14.0.2

v14.0.1

v13.0.5

v11.0.10

v14.0.0

v13.0.4

v11.0.9

v15.0.0-dev

v13.0.3

v11.0.8

v11.0.7

v13.0.2

v13.0.1

v13.0.0

v14.0.0-dev

v11.0.6

v12.0.4

v12.0.3

v11.0.5

v11.0.4

v12.0.2

v12.0.1

v12.0.0

v7.0.16

v11.0.3

v13.0.0-dev

v11.0.2

v7.0.15

v11.0.1

v11.0.0

v12.0.0-dev

v10.0.3

v10.0.2

v7.0.14

v7.0.13

v10.0.1

v10.0.0

v11.0.0-dev

v9.0.3

v7.0.12

v7.0.11

v9.0.2

v9.0.1

v7.0.10

v9.0.0

v10.0.0-dev

v8.0.3

v7.0.9

v8.0.2

v7.0.8

v8.0.1

v7.0.7

v7.0.6

v8.0.0

v9.0.0-dev

v7.0.5

v1.21.11-2

v7.0.4

v7.0.3

v7.0.2

v7.0.1

v7.0.0

v1.21.11-1

v1.21.11-0

v1.21.10-0

v8.0.0-dev

v1.21.8-0

v1.21.7-0

v1.21.6-0

v1.21.5-0

v1.21.4-0

v1.21.3-0

v1.20.6-1

v1.21.2-1

v1.21.2-0

v1.21.1-0

v1.20.6-0

v1.20.5-1

v1.21.0-rc2

v1.21.0-rc1

v1.20.5-0

v7.0.0-dev

v1.21.0-rc0

v1.20.4-1

v1.20.4-0

v1.20.3-0

v1.20.2-0

v1.20.1-0

v1.20.0

v1.19.4-0

v1.21.0-dev

v1.20.0-rc2

v1.19.3-0

v1.19.2-0

v1.19.1-0

v1.19.0-3

v1.19.0-2

v1.18.5-0

v1.20.0-dev

v1.19.0-rc0

v1.18.3-2

v1.18.3-1

v1.18.3-0

v1.18.2-1

v1.18.2-0

v1.18.1-0

v1.18.0-1

v1.18.0-0

v1.18.0-rc1-2

v1.18.0-rc1-1

v1.18.0-rc1

v1.18.0-rc0

v1.19.0-dev

v1.17.3

v1.17.2

v1.17.1

v1.17.0

v1.17.0-rc2

v1.16.9

v1.17.0-rc1

v1.18.0-dev

v1.16.8

v1.16.7

v1.16.6

v1.16.5

v1.16.4

v1.16.3

v1.16.2

v1.16.1

v1.16.0

v1.15.11

v1.17.0-dev

v1.16.0-rc1

v1.15.10

v1.15.9

v1.15.8

v1.15.7

v1.15.6

v1.15.5

v1.15.4

v1.15.3

v1.15.2

v1.15.1

v1.14.7

v1.15.0

v1.15.0-rc3

v1.14.6

v1.15.0-rc2

v1.14.5

v1.16.0-dev

v1.15.0-rc1

v1.14.4

v1.14.3

v1.14.2

v1.14.1

v1.14.0

v1.13.7

v1.14.0-rc2

v1.13.6

v1.13.5

v1.14.0-rc1

v1.15.0-dev

v1.13.4

v1.13.3

v1.13.2

v1.13.1

v1.13.0

v1.12.6

v1.13.0-rc2

v1.14.0-dev

v1.13.0-rc1

v1.12.5

v1.12.4

v1.12.3

v1.12.2

v1.12.1

v1.11.8

v1.12.0

v1.11.7

v1.12.0-rc2

v1.11.6

v1.12.0-rc1

v1.13.0-dev

v1.11.5

v1.11.4

v1.11.3

v1.10.6

v1.12.0-dev

v1.11.2

v1.10.5

v1.11.1

v1.10.4

v1.11.0

v1.11.0-rc2

v1.10.3

v1.11.0-rc1

v1.10.2

v1.10.1

v1.10.0

v1.9.6

v1.9.5

v1.10.0-rc2

v1.11.0-dev

v1.10.0-rc1

v1.9.4

v1.9.3

v1.9.2

v1.9.1

v1.9.0

v1.9.0-rc2

v1.10.0-dev

v1.9.0-rc1

v1.8.3

v1.8.2

v1.8.1

v1.8.0

v1.8.0-rc3

v1.7.6

v1.8.0-rc2

v1.7.5

v1.8.0-rc1

v1.9.0-dev

v1.7.4

v1.7.3

v1.7.2

v1.7.1

v1.7.0

v1.7.0-rc3

v1.6.4

v1.7.0-rc2

v1.6.3

v1.7.0-rc1

v1.7.0-dev

v1.6.2

v1.6.1

v1.6.0

v1.6.0-rc2

v1.5.3

v1.6.0-rc1

v1.6.0-dev

v1.5.2

v1.5.1

v1.5.0

v1.5.0-rc2

v1.5.0-rc1

v1.5.0-dev

v1.4.3

v1.4.2

v1.4.1

v1.4.0

v1.4.0-rc3

v1.4.0-rc2

v1.3.3

v1.4.0-rc1

v1.3.2

v1.3.1

v1.3.0

v1.3.0-rc2

v1.3.0-rc1

v1.2.3

v1.2.2

v1.2.1

v1.2.0

v1.2.0-rc3

v1.2.0-rc2

v1.1.4

v1.2.0-rc1

v1.1.3

v1.1.2

v1.1.1

v1.1.0

v1.0.2

v1.0.1

v1.0.0

v0.9.99

Labels

Clear labels

No items

No labels

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

sleepy/forgejo#12436

No description provided.