Getting the random driver well initialised early enough is a hard
problem, at least on some machines.

Solutions have been proposed by various people. If I understand them
right, Ted Ts'o suggests modifying the boot loader to provide some
entropy & John Denker suggests that every machine should be
provisioned with some entropy in the kernel image at install time.
Both are general solutions, but I think both would require updating
the entropy store later. As far as I know, neither has yet been
implemented as accepted patches

Is a fix that only deals with a subset of the problem worth
considering? Just patch the VM support code so that any time a VM is
either booted or re-started after a save, the host system drops in
some entropy, This looks relatively easy to do, at least for Linux
VMs, and some of the code might be the same as what the more general
approaches would need.

Reply via email to