Sidebar
docs:guide-user:services:rng
Table of Contents
Random generator
Introduction
- This how-to describes the method for setting up a fast RNG on OpenWrt.
- It may help to minimize system startup time on low performance devices.
Goals
- Minimize startup time for cryptography-dependent services.
- Avoid potential deadlock states and race conditions.
Instructions
Provide RNG with rng-tools.
# Install packages opkg update opkg install rng-tools # Configure RNG uci set system.@rngd[0].enabled="1" uci commit system /etc/init.d/rngd restart
Testing
Test the entropy pool size.
sysctl kernel.random.entropy_avail
Use rngtest to check the randomness of data.
RNG_DEV="$(uci get system.@rngd[0].device)" rngtest -c 1000 < ${RNG_DEV}
Troubleshooting
Collect and analyze the following information.
# Restart services /etc/init.d/log restart; /etc/init.d/rngd restart # Log and status logread -e rngd; pgrep -f -a rngd # Persistent configuration uci show system
Extras
Software RNG
Use a software RNG by default.
# Use software RNG uci set system.@rngd[0].device="/dev/urandom" uci commit system /etc/init.d/rngd restart
Hardware RNG
Use a hardware RNG if available.
# Use hardware RNG uci set system.@rngd[0].device="/dev/hwrng" uci commit system /etc/init.d/rngd restart
docs/guide-user/services/rng.txt · Last modified: 2020/10/04 01:37 by vgaetera
Except where otherwise noted, content on this wiki is licensed under the following license: CC Attribution-Share Alike 4.0 International
