From mboxrd@z Thu Jan  1 00:00:00 1970
Return-path: <rauc-bounces@pengutronix.de>
Received: from mail-wm0-x232.google.com ([2a00:1450:400c:c09::232])
 by metis.ext.pengutronix.de with esmtps
 (TLS1.2:ECDHE_RSA_AES_128_GCM_SHA256:128) (Exim 4.89)
 (envelope-from <evan@evanedstrom.com>) id 1fsZjM-0004C5-Ey
 for rauc@pengutronix.de; Wed, 22 Aug 2018 22:27:52 +0200
Received: by mail-wm0-x232.google.com with SMTP id 207-v6so3450533wme.5
 for <rauc@pengutronix.de>; Wed, 22 Aug 2018 13:27:52 -0700 (PDT)
MIME-Version: 1.0
In-Reply-To: <1534838622.22651.84.camel@pengutronix.de>
References: <CANg8e8LQJAvwYxdHkQuzRbunK+YE8yg1VfcvoPRdX4pKP3hj3A@mail.gmail.com>
 <1534838622.22651.84.camel@pengutronix.de>
From: Evan Edstrom <evan@evanedstrom.com>
Date: Wed, 22 Aug 2018 13:27:50 -0700
Message-ID: <CANg8e8L+OEJOoA87G35ERZrm-ntoj26jVYbPQqoa34Yow6_+xQ@mail.gmail.com>
Subject: Re: [RAUC] RAUC bundle encryption, design question
List-Id: RAUC Project - Discussion List <rauc.pengutronix.de>
List-Unsubscribe: <http://metis.pengutronix.de/cgi-bin/mailman/options/rauc>, 
 <mailto:rauc-request@pengutronix.de?subject=unsubscribe>
List-Archive: <http://metis.pengutronix.de/pipermail/rauc/>
List-Post: <mailto:rauc@pengutronix.de>
List-Help: <mailto:rauc-request@pengutronix.de?subject=help>
List-Subscribe: <http://metis.pengutronix.de/cgi-bin/mailman/listinfo/rauc>,
 <mailto:rauc-request@pengutronix.de?subject=subscribe>
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
Errors-To: rauc-bounces@pengutronix.de
Sender: "RAUC" <rauc-bounces@pengutronix.de>
To: =?UTF-8?Q?Jan_L=C3=BCbbe?= <jlu@pengutronix.de>
Cc: rauc@pengutronix.de
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==