From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mail-oi0-x22c.google.com (mail-oi0-x22c.google.com [IPv6:2607:f8b0:4003:c06::22c]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by lists.bufferbloat.net (Postfix) with ESMTPS id D1DD93B25E for ; Fri, 6 May 2016 16:19:08 -0400 (EDT) Received: by mail-oi0-x22c.google.com with SMTP id x19so151568550oix.2 for ; Fri, 06 May 2016 13:19:08 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-transfer-encoding; bh=RVJP6H6DMzTaQaZDKq7wJsKXoq/vHaFJ3wU6XXRQoQM=; b=d5lz/x0AP71iNTewj498V+eL/323jchMZf0wYty6ev69ZRRt9DT7sWUpsyvVj56y57 K3WllK4nU71A6I/7a0PSF1k2GeZqcPOsAuDPRdzyxaGFOvObQKIVOGl+F/tuu6VlEsWB +q24KCfAV/kfLCRJP7yswuuJUsDfljgB6yqLOs0+3GNkwJtlJZZbe30506TOzvTCS//O d+HNk0KP2GvrnCjz13FeTCx0a+k5SRfQnGO97V27nvSDrV2yG0g9WK8nuHEgEG1MtHaN B/ymOKzt3IKwlLCyaZb24hhW8QlNdST4Kn585kHnxLtbW/Ilj4ufF0aIMGXZpQWedktC Depw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-transfer-encoding; bh=RVJP6H6DMzTaQaZDKq7wJsKXoq/vHaFJ3wU6XXRQoQM=; b=eO1aMPWk3Xl8bzEJ65wCoxR02+dqd4nk5REtuHjveHTcZLflTqKyAKA6FQ6A6oGDla aAltO7pX5tQJOFFE8mXdianbpjWvpTVMS/6bkipedb3WC5jfdGqUkEURn3jK1vIW0bsV 60+C4ahyPYTNjdEZnxiSl4OZj10+Nvuhz9iMpMpvRaa2FyI9a+B9Hsh7XtKOMH5/zVzO n0oOeiTlCNOg7d+UeKZ11ncdHYvlEjcT/ny955FDOoy0GsmXZ7X/W16IgCU/UWT8Gjtl hgKvw2rQINaxpjzAQMYvjVs6jZVLS3+14ZrmDBn4S/dKzSn/sX0mn9/e83CY0qTk/OLw fgBg== X-Gm-Message-State: AOPr4FWQ8Kr3LjX6f1IDsYOtgUpZWJ5q1STQB11kqgS+fbH2EJtMmSm77cuJXAYUfbnjycblVKjHNiEz1PB/3g== MIME-Version: 1.0 X-Received: by 10.202.185.214 with SMTP id j205mr9575241oif.68.1462565948244; Fri, 06 May 2016 13:19:08 -0700 (PDT) Received: by 10.202.229.210 with HTTP; Fri, 6 May 2016 13:19:08 -0700 (PDT) In-Reply-To: <1462464637.25803.30.camel@gmail.com> References: <1462464637.25803.30.camel@gmail.com> Date: Fri, 6 May 2016 13:19:08 -0700 Message-ID: From: Dave Taht To: Josh Datko Cc: "cerowrt-devel@lists.bufferbloat.net" Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: quoted-printable Subject: Re: [Cerowrt-devel] pcengines apu2c4 hardware random number generation X-BeenThere: cerowrt-devel@lists.bufferbloat.net X-Mailman-Version: 2.1.20 Precedence: list List-Id: Development issues regarding the cerowrt test router project List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 06 May 2016 20:19:08 -0000 On Thu, May 5, 2016 at 9:10 AM, Josh Datko wrote: > On Wed, 2016-05-04 at 16:28 -0700, Dave Taht wrote: >> so I figure that there might be something even simpler out there from >> the pi-ish or beaglebone world that could be repurposed to suit? > > I've used Atmel's CryptoAuthentication chips routinely. They are i2c > based and have a (proprietary) RNG on them. I have a few linux driver > options for using them. I forget how fast those chips were (?) > Presumably, you want this HWRNG thing to be inside the case. Looking at > that pdf, jumper J4 says it's an I2C connector. Those Atmel chips I was > playing with are all i2c, so you could try flywiring those to the > connector. > > I'm not sure what pin is what, but PWR and GND should be easy to find > and then SDA/SCL I just plug and and try. If it doesn't work, swap the > pins. > > As long as the CPU has access to that i2c bus, (is there an i2c-tools > equivalent on cerowrt?), then you should see it. "cerowrt" as "cerowrt" is dead, I'm doing as much work as possible in the easier to debug x86 world. > miniPCIe has I2C as well. I had this idea once to take a miniPCI card > and solder the atmel chips to the SDA/SCL lines. Meh. If there is a decent gpio header on j.random x86 board, I'd just as soon use that. > > 8-pin molex connectors should be easy to find and it probably wouldn't > be too bad to make it a "proper" expansion board, but ... loose wires > make life more exciting :) > > Josh > > links: > > Out-of-tree kernel driver for Atmel AT204/108/508 chips with /dev/hwrng > support: https://github.com/cryptotronix/atsha204-i2c > > CLI application using the AT204: https://github.com/cryptotronix/hashle > t > > Digikey: https://www.digikey.com/product-detail/en/atmel/ATECC508A-SSHD > A-B/ATECC508A-SSHDA-B-ND/5213053 > > ^ The 204A are cheaper, the 508A have ECDSA/ECDH as well as the RNG and > my "eclet" driver will support ecdsa signing/ecdh, so might as well get > those vs. the 204A. > > > --=20 Dave T=C3=A4ht Let's go make home routers and wifi faster! With better software! http://blog.cerowrt.org