File "/whatever/is/my/funny/project.py", line xxx, in functionname
valid = d.verify()
File "/usr/lib/python3.6/site-packages/dkim/__init__.py", line 879, in verify
return self.verify_sig(sig, include_headers, sigheaders[idx], dnsfunc)
File "/usr/lib/python3.6/site-packages/dkim/__init__.py", line 674, in verify_sig
pk, self.keysize, ktag = load_pk_from_dns(name, dnsfunc)
File "/usr/lib/python3.6/site-packages/dkim/__init__.py", line 440, in load_pk_from_dns
pk = nacl.signing.VerifyKey(pub[b'p'], encoder=nacl.encoding.Base64Encoder)
NameError: name 'nacl' is not defined
with more and more dkim users publishing elliptic curve keys it would be reasonable to add pynacl as a required dependency. Additionally, pynacl requires cffi as backend.
I'm not sure I agree, particularly since adding something that needs to be compiled when installed via pip adds a lot of complexity. We should definitely have a better error message here though.