From mboxrd@z Thu Jan 1 00:00:00 1970 Return-path: Received: from mail-wm0-x22d.google.com ([2a00:1450:400c:c09::22d]) by metis.ext.pengutronix.de with esmtps (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.89) (envelope-from ) id 1fsv2p-0006zk-Ep for rauc@pengutronix.de; Thu, 23 Aug 2018 21:13:23 +0200 Received: by mail-wm0-x22d.google.com with SMTP id s9-v6so6236849wmh.3 for ; Thu, 23 Aug 2018 12:13:23 -0700 (PDT) MIME-Version: 1.0 References: <1534838622.22651.84.camel@pengutronix.de> <1535015034.22651.181.camel@pengutronix.de> In-Reply-To: <1535015034.22651.181.camel@pengutronix.de> From: Evan Edstrom Date: Thu, 23 Aug 2018 12:13:10 -0700 Message-ID: Subject: Re: [RAUC] RAUC bundle encryption, design question List-Id: RAUC Project - Discussion List List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: base64 Errors-To: rauc-bounces@pengutronix.de Sender: "RAUC" To: =?UTF-8?Q?Jan_L=C3=BCbbe?= Cc: rauc@pengutronix.de VGhhbmsgeW91IGZvciB0aGUgaGVscGZ1bCBmZWVkYmFjay4gSSBsaWtlIHRoZSBkaXJlY3Rpb24g b2YgdGhpcwpkZXNpZ24gcXVpdGUgYSBiaXQuIEFncmVlIHdpdGggaW1wbGVtZW50aW5nIHRoZSBl bmNyeXB0aW9uIHVzaW5nCk9wZW5TU0wgaW4gdXNlci1zcGFjZS4gSSB3aWxsIGV4cGFuZCBhIGxp dHRsZSBvbiBvdXIgc3BlY2lmaWMgdXNlCmNhc2UsIEknZCBsaWtlIHRvIGRpZyBhIGJpdCBkZWVw ZXIgb24gdGhlIENNUyBtZXNzYWdlIGNvbnRlbnRzLgoKV2UgaGF2ZSBhIGNyeXB0byBrZXkgc3Rv cmFnZSBjaGlwIG9uIG91ciBlbWJlZGRlZCBkZXZpY2UsIGFuCkFUU0hBMjA0QS4gV2Ugd2FudCB0 byBmZWVkIGl0IGEgc2FsdCwgYW5kIGl0IHdpbGwgZ2VuZXJhdGUgYSBrZXkgZnJvbQp0aGUgZ2l2 ZW4gc2FsdCBhbmQgaXRzIGludGVybmFsIHNlY3JldCBrZXkuIEluIG91ciBjYXNlIGFsbCBvZiB0 aGUKZGV2aWNlcywgZ2l2ZW4gdGhlIHNhbWUgc2FsdCwgd2lsbCBwcm9kdWNlIHRoZSBzYW1lIGtl eS4gSSdkIGxpa2UgdG8KdXNlIHRoaXMga2V5IHRvIGRlY3J5cHQgdGhlIENNUyBtZXNzYWdlLiBP dGhlciB1c2VycyBvZiBSQVVDIG1heSB3YW50CnRvIGhhbmRsZSB0aGlzIGRpZmZlcmVudGx5LiBJ IHdhc24ndCBxdWl0ZSBjbGVhciBob3cgeW91IHdlcmUKcGljdHVyaW5nIFJBVUMgYmVpbmcgZGVs aXZlcmVkIGEga2V5IGZvciB0aGUgQ01TIG1lc3NhZ2UgaW4gYSBnZW5lcmljCndheS4KClJlZ2Fy ZGxlc3MsIHRvIHVzZSB0aGlzIGFwcHJvYWNoIHdlIHdvdWxkIG5lZWQgYSBwb3J0aW9uIG9mIHRo ZSBidW5kbGUKbWV0YWRhdGEgd2hpY2ggaXMgbm90IGVuY3J5cHRlZCB0byBzdG9yZSB0aGUgc2Fs dC4gU2luY2UgdGhpcyBtYXkKZGlmZmVyIGZyb20gdXNlciB0byB1c2VyLCBJIHdvdWxkIHByb3Bv c2UgYWxsb3dpbmcgYSB1c2VyIHRvIHBhc3MgYQpmaWxlIHRvIHRoZSBidW5kbGUgZ2VuZXJhdG9y IHdoaWNoIHdvdWxkIGJlIHN0b3JlZCBpbiB0aGUgYnVuZGxlCnNpZ25lZCBidXQgbm90IGVuY3J5 cHRlZC4gT24gdGhlIGRldmljZSwgd2Ugd291bGQgbmVlZCBhIGhhbmRsZXIgdG8KZGVsaXZlciB0 aGUgZGF0YSBzbyB3ZSBjb3VsZCAgc2VuZCBpdCB0byB0aGUgY3J5cHRvIGRldmljZSwgdGhlbgpw cm92aWRlIHRoZSByZXN1bHRpbmcga2V5IHRvIFJBVUMgdG8gb3BlbiB0aGUgYnVuZGxlLiBSQVVD IHdvdWxkIHRoZW4KaGF2ZSBldmVyeXRoaW5nIGl0IG5lZWRlZCB0byBkZWNyeXB0IHRoZSBtZXNz YWdlIGFuZCBpbiB0dXJuIG1vdW50IHRoZQplbmNyeXB0ZWQgc3F1YXNoZnMgcGFydGl0aW9uLiBB IFJBVUMgdXNlciB3b3VsZG4ndCBoYXZlIHRvIGxldmVyYWdlCnRoaXMsIGJ1dCBhIGN1c3RvbSBk YXRhIHNlY3Rpb24gY291cGxlZCB3aXRoIGEgaGFuZGxlciBiZXR3ZWVuIHRoZQpzdGFydCBhbmQg ZGVjcnlwdCBzdGVwcyB3b3VsZCBiZSB3aWRlbHkgYWNjb21tb2RhdGluZy4KCk15IG90aGVyIHBy b3Bvc2FsIGlzIHRvIGVpdGhlciBtb3ZlIG9yIGluY2x1ZGUgYSBjb3B5IG9mIHRoZSBtYW5pZmVz dAppbiB0aGUgdW5lbmNyeXB0ZWQgYnV0IHNpZ25lZCBwb3J0aW9uIG9mIHRoZSBidW5kbGUgbWV0 YWRhdGEuIFNpbmNlCmRlY3J5cHRpbmcgYW5kIG1vdW50aW5nIGEgYnVuZGxlIGNvdWxkIHRha2Ug YSBsaXR0bGUgdGltZSwgaGF2aW5nIGl0CmVhc2lseSBhY2Nlc3NpYmxlIHdvdWxkIGFsbG93IGdl dHRpbmcgYSBxdWljayByZXNwb25zZSBmcm9tICJyYXVjCmluZm8iLCBpdCB3b3VsZCBiZSBuaWNl IHRvIGRvIGNvbXBhdGliaWxpdHkgY2hlY2tzIGF0IHRoaXMgdGltZSB0b28uCllvdSBjb3VsZCBh bHNvIGluc3BlY3QgYSBidW5kbGUgb2ZmLWRldmljZSB0byBzZWUgd2hhdCBpdCB3YXMuIEZvcgpl eGFtcGxlIG9uIGEgYXJ0aWZhY3Qgc3RvcmFnZSBzZXJ2ZXIgb3Igd2ViIGludGVyZmFjZS4KCkkg ZHJldyBhIGNydWRlIGRpYWdyYW0uIFdhc24ndCBzdXJlIGlmIGFsbCBtYWlsIGNsaWVudHMgcmVu ZGVyaW5nIGluCmZpeGVkIHdpZHRoIHdhcyBhIGdvb2QgYXNzdW1wdGlvbiwgc28gSSBwdXQgaXQg aGVyZToKaHR0cDovL2ZpbGUuZXZhbmVkc3Ryb20uY29tL29zcmMvcmF1Yy9taXNjL2J1bmRsZV9s b2dpYzEudHh0CgpFdmFuCgpPbiBUaHUsIEF1ZyAyMywgMjAxOCBhdCAyOjA0IEFNIEphbiBMw7xi YmUgd3JvdGU6Cj4gT24gV2VkLCAyMDE4LTA4LTIyIGF0IDEzOjI3IC0wNzAwLCBFdmFuIEVkc3Ry b20gd3JvdGU6Cj4gPiBPbiBUdWUsIEF1ZyAyMSwgMjAxOCBhdCAxOjAzIEFNLCBKYW4gTMO8YmJl IHdyb3RlOgo+ID4gPiBPbiBNb24sIDIwMTgtMDgtMjAgYXQgMTE6MzkgLTA3MDAsIEV2YW4gRWRz dHJvbSB3cm90ZToKPiA+IEkgYWdyZWUgYnVpbGRpbmcgaW4gZW5jcnlwdGlvbiBzdXBwb3J0IGlz IG5pY2UsIHRob3VnaCBzdWNjZXNzZnVsCj4gPiBpbXBsZW1lbnRhdGlvbiBvZiBlbmNyeXB0aW9u IGFuZCBzZWN1cml0eSBmb3IgZW1iZWRkZWQgZGV2aWNlcwo+ID4gcmVxdWlyZXMgc29tZSBsZXZl bCBvZiBjdXN0b20gaGFyZHdhcmUuCj4gV2hhdCBraW5kIG9mIGN1c3RvbSBoYXJkd2FyZSBhcmUg eW91IHRoaW5raW5nIGFib3V0PyBJJ2QgcHJlZmVyIHRvCj4gcmV1c2UgYW5kIGludGVncmF0ZSB3 aXRoIGV4aXN0aW5nIEhXL1NXIGFzIG11Y2ggYXMgcG9zc2libGUuCgpKdXN0IG1lYW4gdGhhdCB0 d28gZW1iZWRkZWQgZGV2aWNlcyBmcm9tIGRpZmZlcmVudCBjb21wYW5pZXMgYXJlCmxpa2VseSB0 byBsb29rIGV4dHJlbWVseSBkaWZmZXJlbnQgaW4gdGVybXMgb2YgaG93IHRoZXkgaGFuZGxlCnNl Y3VyaXR5LiBTcGVjaWZpY2FsbHkga2V5IHN0b3JhZ2Ugb3IgZ2VuZXJhdGlvbiAoc2VlIHVzZSBj YXNlIGFib3ZlKS4KCj4gPiBUaGlzIGlzIGdvaW5nIHRvIGJlIHZlcnkKPiA+IGRldmljZSBzcGVj aWZpYyBhbmQgSSdtIHdvcnJpZWQgZm9yY2luZyB0aGUgdXNlIG9mIGEgc3BlY2lmaWMKPiA+IHBy b2NlZHVyZSBtYXkgYmUgdG9vIGxpbWl0aW5nLiBJIHdvbmRlciBpZiB3ZSB3b3VsZCBzdGlsbCBu ZWVkIHRvCj4gPiBwcm92aWRlIHNvbWUgdXNlciBjdXN0b21pemFiaWxpdHkgaW4gdGhlIGZvcm0g b2YgYSBoYW5kbGVyIHNvbWV3aGVyZS4KPiBZb3Ugd2FudCB0byB1c2UgYSByYW5kb20gcGF5bG9h ZCBrZXkgZm9yIGV2ZXJ5IGJ1bmRsZSB0byBhdm9pZCBwcm9ibGVtcwo+IHdpdGgga2V5L0lWIHJl dXNlLiBTbyBJIHRoaW5rIHRoZSAoZW5jcnlwdGVkKSBwYXlsb2FkIGtleSBuZWVkcyB0byBiZQo+ IGNvbnRhaW5lZCBpbiB0aGUgYnVuZGxlIG1ldGFkYXRhLiBJZiB5b3UgaGF2ZSBhIGZpeGVkIChz aGFyZWQgc2VjcmV0KQo+IGtleSBvbiB0aGUgZGV2aWNlcywgdGhpcyBjb3VsZCBzdGlsbCBiZSBo YW5kbGUgYnkgcGFzc2luZyBpdCBhcyBhCj4gcGFzc3dvcmQgdG8gdGhlIENNUyBkZWNyeXB0aW9u LgoKSSBkbyBsaWtlIHRoaXMgaWRlYSBvZiBoYXZpbmcgYSByYW5kb20gcGF5bG9hZCBrZXkgc3Rv cmVkIGluIGFuCmVuY3J5cHRlZCBDTVMgbWVzc2FnZS4gQnV0IHNvbWVob3cgT3BlblNTTCBuZWVk cyB0byBnZXQgYSBrZXkgdG8KZGVjcnlwdCB0aGUgQ01TIG1lc3NhZ2UuIEkgYW0gd29ycmllZCBh Ym91dCB0aGUgcG90ZW50aWFsIHZhcmlldHkgaW4KdGhpcyBhcmVhIGFjcm9zcyBkZXZpY2VzLgoK X19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX19fX18KUkFVQyBtYWls aW5nIGxpc3Q=