hamishcoleman
commented
7 years ago Another avenue for the random number question is to use the hardware random number generator.
The Orange Pi Zero uses a H2+ chip, which is basically a H3 chip. The Allwinner H3 Datasheet V1.2 describes the onboard Crypto Engine in section 4.15 and documents that that this has two different random number generators.
Unfortunately, the linux kernel does not appear to have a driver for this hardware. But it does look possible to do.
What is missing is documentation from Allwinner about just how the two RNGs are generated..
Can we safely generate keys (e.g. cjdns) on the node if we install haveged?