Follow up from legacy/trac#17686. We either trust OpenSSL's `RAND_bytes()`, or we don't. The existence/use of the call hints at the latter, so failing `crypto_strongest_rand()` should be fatal especially when doing Ed25519/Curve25519 key generation.