Validation fixes

internal/smtpserver/backend.go

@@ -63,11 +63,12 @@ func (b *Backend) AnonymousLogin(state *smtp.ConnectionState) (smtp.Session, err
 		if err != nil {
 			return nil, fmt.Errorf("hex.DecodeString: %w", err)
 		}
-		if state.Hostname != base62.EncodeToString(pks) {
+		remote := base62.EncodeToString(pks)
+		if state.Hostname != remote {
 			return nil, fmt.Errorf("You are not who you claim to be")
 		}
 
-		b.Log.Println("Incoming SMTP session from", state.RemoteAddr.String())
+		b.Log.Println("Incoming SMTP session from", remote)
 		return &SessionRemote{
 			backend: b,
 			state:   state,

internal/smtpserver/session_remote.go

@@ -3,6 +3,7 @@ package smtpserver
 import (
 	"bytes"
 	"crypto/ed25519"
+	"encoding/hex"
 	"fmt"
 	"io"
 	"time"
@@ -26,7 +27,13 @@ func (s *SessionRemote) Mail(from string, opts smtp.MailOptions) error {
 		return fmt.Errorf("mail.ParseAddress: %w", err)
 	}
 
-	if local := s.state.RemoteAddr.String(); local != host {
+	pks, err := hex.DecodeString(host)
+	if err != nil {
+		return fmt.Errorf("hex.DecodeString: %w", err)
+	}
+	remote := base62.EncodeToString(pks)
+
+	if local := s.state.RemoteAddr.String(); local != remote {
 		return fmt.Errorf("not allowed to send incoming mail as %s", from)
 	}