From mboxrd@z Thu Jan  1 00:00:00 1970
Delivery-date: Fri, 18 Mar 2022 14:22:31 +0100
Received: from metis.ext.pengutronix.de ([2001:67c:670:201:290:27ff:fe1d:cc33])
	by lore.white.stw.pengutronix.de with esmtps  (TLS1.3) tls TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
	(Exim 4.94.2)
	(envelope-from <rauc-bounces+lore=lore.pengutronix.de@pengutronix.de>)
	id 1nVCYn-00FjiR-73
	for lore@lore.pengutronix.de; Fri, 18 Mar 2022 14:22:31 +0100
Received: from localhost ([127.0.0.1] helo=metis.ext.pengutronix.de)
	by metis.ext.pengutronix.de with esmtp (Exim 4.92)
	(envelope-from <rauc-bounces@pengutronix.de>)
	id 1nVCYn-0003tf-VX; Fri, 18 Mar 2022 14:22:29 +0100
Received: from ptx.hi.pengutronix.de ([2001:67c:670:100:1d::c0])
 by metis.ext.pengutronix.de with esmtps
 (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92)
 (envelope-from <jlu@pengutronix.de>)
 id 1nVCYf-0003tQ-PU; Fri, 18 Mar 2022 14:22:21 +0100
Received: from localhost ([127.0.0.1])
 by ptx.hi.pengutronix.de with esmtp (Exim 4.92)
 (envelope-from <jlu@pengutronix.de>)
 id 1nVCYf-0004VQ-BN; Fri, 18 Mar 2022 14:22:21 +0100
Message-ID: <da03b1b4ebdc559af079123c116d6737082f78e3.camel@pengutronix.de>
From: Jan =?ISO-8859-1?Q?L=FCbbe?= <jlu@pengutronix.de>
To: "Yazdani, Reyhaneh" <RYazdani@data-modul.com>, "rauc@pengutronix.de"
 <rauc@pengutronix.de>
Date: Fri, 18 Mar 2022 14:22:21 +0100
In-Reply-To: <112ee1cc577b423db517e12055d42ec3@data-modul.com>
References: <1c731e01b30146c7b24384eacf6954a9@data-modul.com>
 <f97839b2ad86575da960f06660de9784a7bc02dd.camel@pengutronix.de>
 <112ee1cc577b423db517e12055d42ec3@data-modul.com>
User-Agent: Evolution 3.42.4 (by Flathub.org)) 
MIME-Version: 1.0
Subject: Re: [RAUC] pass PEM passphrase in Yocto build
X-BeenThere: rauc@pengutronix.de
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: RAUC Project - Discussion List <rauc.pengutronix.de>
List-Unsubscribe: <http://metis.pengutronix.de/cgi-bin/mailman/options/rauc>, 
 <mailto:rauc-request@pengutronix.de?subject=unsubscribe>
List-Archive: <http://metis.pengutronix.de/cgi-bin/mailman/private/rauc/>
List-Post: <mailto:rauc@pengutronix.de>
List-Help: <mailto:rauc-request@pengutronix.de?subject=help>
List-Subscribe: <http://metis.pengutronix.de/cgi-bin/mailman/listinfo/rauc>,
 <mailto:rauc-request@pengutronix.de?subject=subscribe>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: "RAUC" <rauc-bounces@pengutronix.de>
X-SA-Exim-Connect-IP: 127.0.0.1
X-SA-Exim-Mail-From: rauc-bounces@pengutronix.de
X-SA-Exim-Scanned: No (on metis.ext.pengutronix.de); SAEximRunCond expanded to false

Hi Reyhaneh,

On Fri, 2022-03-18 at 11:03 +0000, Yazdani, Reyhaneh wrote:
> > Yes. So far, nobody has implemented support for passing a private key
> > password to RAUC, as the security benefits are minimal compared to the
> > effort.
> [Reyhaneh] I asked here, since I wanted to be sure nothing has changed
> regarding implementation since six months. That is great you answered me
> quickly.

Besides the normal maintenance, most of the changes Enrico and myself are
contributing are driven by requirements from our customers (see streaming
support, encryption or the upcoming incremental block has mode).

As we don't see password support as a useful feature (there are better
alternatives avalable), it's unlikely that Pengutronix will implement this.

Best regards,
Jan
-- 
Pengutronix e.K.                           |                             |
Steuerwalder Str. 21                       | http://www.pengutronix.de/  |
31137 Hildesheim, Germany                  | Phone: +49-5121-206917-0    |
Amtsgericht Hildesheim, HRA 2686           | Fax:   +49-5121-206917-5555 |

_______________________________________________
RAUC mailing list